VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Synology
> Vs960Hd Firmware
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2019-08-13
CVE-2019-9517
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service.
network
low complexity
apple
apache
canonical
debian
synology
fedoraproject
opensuse
redhat
oracle
mcafee
netapp
nodejs
CWE-770
7.5
7.5
2019-08-13
CVE-2019-9516
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service.
network
low complexity
apple
apache
canonical
debian
fedoraproject
synology
opensuse
redhat
oracle
mcafee
f5
nodejs
CWE-770
6.5
6.5
2019-08-13
CVE-2019-9515
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service.
network
low complexity
apple
apache
canonical
debian
synology
fedoraproject
opensuse
redhat
oracle
mcafee
f5
nodejs
CWE-770
7.5
7.5
2019-08-13
CVE-2019-9514
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service.
network
low complexity
apple
apache
debian
canonical
synology
fedoraproject
opensuse
redhat
oracle
mcafee
netapp
f5
nodejs
CWE-770
7.5
7.5
2019-08-13
CVE-2019-9513
Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service.
network
low complexity
apple
apache
canonical
debian
fedoraproject
synology
opensuse
redhat
oracle
mcafee
f5
nodejs
7.5
7.5
2019-08-13
CVE-2019-9511
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service.
network
low complexity
apple
apache
canonical
debian
synology
fedoraproject
opensuse
redhat
oracle
mcafee
f5
nodejs
CWE-770
7.5
7.5
2019-04-09
CVE-2019-3870
Incorrect Default Permissions vulnerability in multiple products
A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2.
local
low complexity
samba
fedoraproject
synology
CWE-276
6.1
6.1
2018-12-20
CVE-2018-1160
Out-of-bounds Write vulnerability in multiple products
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c.
network
low complexity
netatalk
synology
debian
CWE-787
critical
9.8
9.8
2018-03-06
CVE-2018-7185
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.
network
low complexity
ntp
synology
canonical
netapp
hpe
oracle
7.5
7.5
2018-03-06
CVE-2018-7184
ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp.
network
low complexity
ntp
synology
slackware
canonical
netapp
7.5
7.5
«
Previous
1
2
(current)
3
»
Next