Known Vulnerabilities for Assistant by Synology
Listed below are 1 of the newest known vulnerabilities associated with "Assistant" by "Synology".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40602 json | The Home Assistant Command-line interface (hass-cli) is a command-line tool for Home Assistant. Up to 1.0.0 of home-assitant-... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-39426 json | MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross-Site Scripting (XSS) vul... | Not Provided | 2026-04-14 | 2026-04-16 |
| CVE-2026-39425 json | MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross-Site Scripting (XSS) vul... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-39424 json | MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, the chat export feature is vulnerable to Im... | Not Provided | 2026-04-14 | 2026-04-16 |
| CVE-2026-39423 json | MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain an Eval Injection vulnerability in the ... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-39422 json | MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a Stored Cross-Site Scripting (XSS) vul... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-39421 json | MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain a sandbox escape vulnerability in the T... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-39420 json | MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, an incomplete sandbox protection mechanism ... | Not Provided | 2026-04-14 | 2026-04-16 |
| CVE-2026-39419 json | MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, an authenticated user can bypass sandbox re... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-39418 json | MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, sandbox network protection can be bypassed ... | Not Provided | 2026-04-14 | 2026-04-14 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Synology | Assistant | 6.2-23733 | |||
| Application | Synology | Assistant | 6.1-15163 | |||
| Application | Synology | Assistant | 6.1-15030 | |||
| Application | Synology | Assistant | 6.0-7319 | |||
| Application | Synology | Assistant | 5.2-5566 | |||
| Application | Synology | Assistant | 5.1-5005 | |||
| Application | Synology | Assistant | 5.1-5002 | |||
| Application | Synology | Assistant | 5.0-4448 | |||
| Application | Synology | Assistant | 5.0-4418 | |||
| Application | Synology | Assistant | 4.3-4359 | |||
| Application | Synology | Assistant | 4.3-4206 | |||
| Application | Synology | Assistant | 4.2-3508 | |||
| Application | Synology | Assistant | 4.2-3179 | |||
| Application | Synology | Assistant | 4.1-2647 | |||
| Application | Synology | Assistant | 4.1-2638 | |||
| Application | Synology | Assistant | 4.1-2636 | |||
| Application | Synology | Assistant | 4.0-2216 | |||
| Application | Synology | Assistant | 4.0-2196 | |||
| Application | Synology | Assistant | 3.2-1920 | |||
| Application | Synology | Assistant | 3.1-1593 |