CVE-2024-47263

CVSS Score & Metrics

Base Score

4.1 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:N                                    

Vulnerability Description

An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Backup.Repository webapi component in Synology Hyper Backup before 4.1.2-4036 allows remote authenticated users with administrator privileges to write specific files containing non-sensitive information via unspecified vectors.

Vulnerability Details

Published Date

June 03, 2026

Last Modified

June 03, 2026

CWE ID

CWE-22

Source

NVD

Vendor

Synology

Product

Hyper Backup

External References

https://www.synology.com/en-global/releaseNote/HyperBackup?model=DS224%2B&os=DSM&version=7_x_series

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment