Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices
Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices
05 November 2024
Taiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution.
Tracked as CVE-2024-10443 and dubbed RISK:STATION by Midnight Blue, the zero-day flaw was demonstrated at the Pwn2Own Ireland 2024 hacking contest by security researcher Rick de Jager.
RISK:STATION is an "