Vulnerabilities > Synology > Download Station > 3.8.15.3563
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-18 | CVE-2021-34809 | Unspecified vulnerability in Synology Download Station Improper neutralization of special elements used in a command ('Command Injection') vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors. | 8.8 |
| 2021-06-18 | CVE-2021-34810 | Unspecified vulnerability in Synology Download Station Improper privilege management vulnerability in cgi component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors. | 8.8 |
| 2021-06-18 | CVE-2021-34811 | Unspecified vulnerability in Synology Download Station Server-Side Request Forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to access intranet resources via unspecified vectors. | 4.3 |