Known Vulnerabilities for Application Service by Synology
Listed below are 2 of the newest known vulnerabilities associated with "Application Service" by "Synology".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-56304 json | picklescan before 1.0.1 contains an unsafe pickle deserialization vulnerability allowing unauthenticated attackers to create ... | Not Provided | 2026-06-20 | 2026-06-20 |
| CVE-2026-56248 json | Cap-go capgo (capgo-backend) before 12.128.12 contains an unauthenticated denial-of-service vulnerability arising from the au... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-56228 json | Capgo before 12.128.2 fails to enforce a maximum value on the minimum password length field in its password policy configurat... | Not Provided | 2026-06-20 | 2026-06-23 |
| CVE-2026-55654 json | A flaw was found in OpenSSH. This vulnerability, a heap out-of-bounds read, occurs during the cleanup of GSSAPI (Generic Secu... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54892 json | Inefficient algorithmic complexity in Plug's nested-parameter decoder allows an unauthenticated remote attacker to cause deni... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-54224 json | UBB.threads is vulnerable to Denial of Service (DoS). By sending multiple concurrent requests to view any user profile on ins... | Not Provided | 2026-06-18 | 2026-06-18 |
| CVE-2026-53723 json | Guzzle Services provides an implementation of the Guzzle Command library that uses Guzzle service descriptions to describe we... | Not Provided | 2026-06-11 | 2026-06-11 |
| CVE-2026-52778 json | YesWiki is a wiki system written in PHP. Prior to version 4.6.6, an unsafe execution vulnerability exists in the Bazar form f... | Not Provided | 2026-06-08 | 2026-06-09 |
| CVE-2026-52718 json | A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad. The gst_av1_parser_parse_tile... | Not Provided | 2026-06-15 | 2026-06-15 |
| CVE-2026-50169 json | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other lang... | Not Provided | 2026-06-22 | 2026-06-22 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Synology | Application Service | 1.5.4-0320 | |||
| Application | Synology | Application Service | 1.5.3-0319 | |||
| Application | Synology | Application Service | 1.5.2-0316 | |||
| Application | Synology | Application Service | 1.5.1-0312 | |||
| Application | Synology | Application Service | 1.5.0-0309 | |||
| Application | Synology | Application Service | 1.4.2-0208 | |||
| Application | Synology | Application Service | 1.4.1-0163 | |||
| Application | Synology | Application Service | 1.4.0-0123 | |||
| Application | Synology | Application Service | 1.3.3-0062 | |||
| Application | Synology | Application Service | 1.3.2-0054 | |||
| Application | Synology | Application Service | 1.3.0-0049 | |||
| Application | Synology | Application Service | 1.3.0-0048 | |||
| Application | Synology | Application Service | 1.1.1-0032 | |||
| Application | Synology | Application Service | 1.1.0-0030 | |||
| Application | Synology | Application Service | 1.0.0-0022 |