Synology Product Security Update Advisory (CVE-2024-10442)

May 07 2025

Overview

We have released a security update to fix vulnerabilities in Synology products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2024-10442

DSMUC 3.1 Version: 3.1.4-23079 and earlier
Replication Service for DSM 7.2 Version: 1.3.0-0423 and earlier
Replication Service for DSM 7.1 version: less than 1.2.2-0353
Replication Service for DSM 6.2 version: 1.0.12-0066 or earlier

Resolved Vulnerabilities

Arbitrary code execution vulnerability (CVE-2024-10442)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-10442

DSMUC 3.1 version: 3.1.4-23079
Replication Service for DSM 7.2 Version: 1.3.0-0423
Replication Service for DSM 7.1 Version: 1.2.2-0353
Replication Service for DSM 6.2 Version: 1.0.12-0066

References

[1] Synology-SA-24:22 Replication Service (PWN2OWN 2024)
https://www.synology.com/en-global/security/advisory/Synology_SA_24_22

Synology Product Security Update Advisory (CVE-2024-10442)

MS Family April 2025 Secondary Security Update Advisory

Microsoft Edge browser () version security update advisory

Tags:

MS Family April 2025 Secondary Security Update Advisory

Microsoft Edge browser () version security update advisory