Known Vulnerabilities for Application Service by Synology
Listed below are 2 of the newest known vulnerabilities associated with "Application Service" by "Synology".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44240 json | basic-ftp is an FTP client for Node.js. Prior to 5.3.1, basic-ftp is vulnerable to client-side denial of service when parsing... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-42793 json | Allocation of Resources Without Limits or Throttling vulnerability in absinthe-graphql absinthe allows unauthenticated denial... | Not Provided | 2026-05-08 | 2026-05-09 |
| CVE-2026-42786 json | Allocation of Resources Without Limits or Throttling vulnerability in mtrudel bandit allows unauthenticated remote denial of ... | Not Provided | 2026-05-01 | 2026-05-04 |
| CVE-2026-42608 json | Grav is a file-based Web platform. Prior to 2.0.0-beta.2, there is a Path Traversal vulnerability within the FormFlash core c... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-42403 json | Apache Neethi does not properly detect circular references in policy definitions. When a WS-Policy document contains circular... | Not Provided | 2026-05-01 | 2026-05-01 |
| CVE-2026-42369 json | GV-VMS V20 is a Video Monitoring Software used to gather the feeds of many surveillance cameras and manage other security dev... | Not Provided | 2026-05-04 | 2026-05-04 |
| CVE-2026-42343 json | FastGPT is an AI Agent building platform. In versions 4.14.13 and prior, the code-sandbox component suffers from insufficient... | Not Provided | 2026-05-08 | 2026-05-12 |
| CVE-2026-41680 json | Marked is a markdown parser and compiler. From 18.0.0 to 18.0.1, a critical Denial of Service (DoS) vulnerability exists in m... | Not Provided | 2026-04-24 | 2026-04-24 |
| CVE-2026-41491 json | Dapr is a portable, event-driven, runtime for building distributed applications across cloud and edge. From versions 1.3.0 to... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-40919 json | A flaw was found in GIMP. This vulnerability, a buffer overflow in the `file-seattle-filmworks` plugin, can be exploited when... | Not Provided | 2026-04-15 | 2026-04-15 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Synology | Application Service | 1.5.4-0320 | |||
| Application | Synology | Application Service | 1.5.3-0319 | |||
| Application | Synology | Application Service | 1.5.2-0316 | |||
| Application | Synology | Application Service | 1.5.1-0312 | |||
| Application | Synology | Application Service | 1.5.0-0309 | |||
| Application | Synology | Application Service | 1.4.2-0208 | |||
| Application | Synology | Application Service | 1.4.1-0163 | |||
| Application | Synology | Application Service | 1.4.0-0123 | |||
| Application | Synology | Application Service | 1.3.3-0062 | |||
| Application | Synology | Application Service | 1.3.2-0054 | |||
| Application | Synology | Application Service | 1.3.0-0049 | |||
| Application | Synology | Application Service | 1.3.0-0048 | |||
| Application | Synology | Application Service | 1.1.1-0032 | |||
| Application | Synology | Application Service | 1.1.0-0030 | |||
| Application | Synology | Application Service | 1.0.0-0022 |