CVE-2024-29231 - Vulnerability Details - OpenCVE

Improper validation of array index vulnerability in UserPrivilege.Enum webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to bypass security constraints via unspecified vectors.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Synology	Diskstation Manager Surveillance Station

Configuration 1 [-]

AND

cpe:2.3:a:synology:surveillance_station:*:*:*:*:*:*:*:*

cpe:2.3:o:synology:diskstation_manager:6.2:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:a:synology:surveillance_station:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:synology:diskstation_manager:7.1:::::::*
	cpe:2.3:o:synology:diskstation_manager:7.2:::::::*

No data.

References

Link	Providers
https://www.synology.com/en-global/security/advisory/Synology_SA_24_04

History

Tue, 14 Jan 2025 21:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Synology Synology diskstation Manager Synology surveillance Station
CPEs		cpe:2.3:a:synology:surveillance_station:::::::: cpe:2.3:o:synology:diskstation_manager:6.2:::::::* cpe:2.3:o:synology:diskstation_manager:7.1:::::::* cpe:2.3:o:synology:diskstation_manager:7.2:::::::*
Vendors & Products		Synology Synology diskstation Manager Synology surveillance Station

MITRE

Status: PUBLISHED

Assigner: synology

Published: 2024-03-28T06:23:39.710Z

Updated: 2024-08-02T01:10:55.364Z

Reserved: 2024-03-19T06:14:19.314Z

Link: CVE-2024-29231

Vulnrichment

Updated: 2024-08-02T01:10:55.364Z

NVD

Status : Analyzed

Published: 2024-03-28T07:16:04.170

Modified: 2025-01-14T21:23:00.793

Link: CVE-2024-29231

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-29231", "assignerOrgId": "db201096-a0cc-46c7-9a55-61d9e221bf01", "state": "PUBLISHED", "assignerShortName": "synology", "dateReserved": "2024-03-19T06:14:19.314Z", "datePublished": "2024-03-28T06:23:39.710Z", "dateUpdated": "2024-08-02T01:10:55.364Z"}, "containers": {"cna": {"problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-129: Improper Validation of Array Index", "cweId": "CWE-129", "type": "CWE"}]}], "affected": [{"vendor": "Synology", "product": "Surveillance Station", "versions": [{"version": "*", "status": "affected", "lessThan": "9.2.0-9289", "versionType": "semver"}, {"version": "*", "status": "affected", "lessThan": "9.2.0-11289", "versionType": "semver"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "Improper validation of array index vulnerability in UserPrivilege.Enum webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to bypass security constraints via unspecified vectors."}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "baseScore": 5.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "LOW"}}], "references": [{"url": "https://www.synology.com/en-global/security/advisory/Synology_SA_24_04", "name": "Synology-SA-24:04 Surveillance Station", "tags": ["vendor-advisory"]}], "credits": [{"lang": "en", "value": "TEAM.ENVY (https://team-envy.gitbook.io/team.envy/about-us)", "type": "finder"}], "providerMetadata": {"orgId": "db201096-a0cc-46c7-9a55-61d9e221bf01", "shortName": "synology", "dateUpdated": "2024-03-28T06:23:39.710Z"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-29231", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-03-28T19:07:24.893571Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:56:48.884Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:10:55.364Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.synology.com/en-global/security/advisory/Synology_SA_24_04", "name": "Synology-SA-24:04 Surveillance Station", "tags": ["vendor-advisory", "x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.synology.com/en-global/security/advisory/Synology_SA_24_04", "name": "Synology-SA-24:04 Surveillance Station", "tags": ["vendor-advisory", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:10:55.364Z"}}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-29231", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-03-28T19:07:24.893571Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-23T19:01:20.070Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"credits": [{"lang": "en", "type": "finder", "value": "TEAM.ENVY (https://team-envy.gitbook.io/team.envy/about-us)"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Synology", "product": "Surveillance Station", "versions": [{"status": "affected", "version": "*", "lessThan": "9.2.0-9289", "versionType": "semver"}, {"status": "affected", "version": "*", "lessThan": "9.2.0-11289", "versionType": "semver"}], "defaultStatus": "affected"}], "references": [{"url": "https://www.synology.com/en-global/security/advisory/Synology_SA_24_04", "name": "Synology-SA-24:04 Surveillance Station", "tags": ["vendor-advisory"]}], "descriptions": [{"lang": "en", "value": "Improper validation of array index vulnerability in UserPrivilege.Enum webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to bypass security constraints via unspecified vectors."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-129", "description": "CWE-129: Improper Validation of Array Index"}]}], "providerMetadata": {"orgId": "db201096-a0cc-46c7-9a55-61d9e221bf01", "shortName": "synology", "dateUpdated": "2024-03-28T06:23:39.710Z"}}}, "cveMetadata": {"cveId": "CVE-2024-29231", "state": "PUBLISHED", "dateUpdated": "2024-08-02T01:10:55.364Z", "dateReserved": "2024-03-19T06:14:19.314Z", "assignerOrgId": "db201096-a0cc-46c7-9a55-61d9e221bf01", "datePublished": "2024-03-28T06:23:39.710Z", "assignerShortName": "synology"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:synology:surveillance_station:*:*:*:*:*:*:*:*", "matchCriteriaId": "187A263E-E3AE-4800-90E7-D3090E736C9E", "versionEndExcluding": "9.2.0-9289", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synology:diskstation_manager:6.2:*:*:*:*:*:*:*", "matchCriteriaId": "D9685B12-824F-42AD-B87C-6E7A78BB7FA5", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:synology:surveillance_station:*:*:*:*:*:*:*:*", "matchCriteriaId": "F59B6F9A-253C-43C6-B88D-BB18242A1EA9", "versionEndExcluding": "9.2.0-11289", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:synology:diskstation_manager:7.1:*:*:*:*:*:*:*", "matchCriteriaId": "10C4B055-D99B-4D58-811C-DD323A68A890", "vulnerable": false}, {"criteria": "cpe:2.3:o:synology:diskstation_manager:7.2:*:*:*:*:*:*:*", "matchCriteriaId": "5C262042-304B-49DC-BB4B-655C5C36D88C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper validation of array index vulnerability in UserPrivilege.Enum webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to bypass security constraints via unspecified vectors."}, {"lang": "es", "value": "La validaci\u00f3n incorrecta de la vulnerabilidad del \u00edndice de matriz en el componente webapi UserPrivilege.Enum en Synology Surveillance Station anterior a 9.2.0-9289 y 9.2.0-11289 permite a los usuarios autenticados remotamente eludir las restricciones de seguridad a trav\u00e9s de vectores no especificados."}], "id": "CVE-2024-29231", "lastModified": "2025-01-14T21:23:00.793", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.5, "source": "security@synology.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-03-28T07:16:04.170", "references": [{"source": "security@synology.com", "tags": ["Vendor Advisory"], "url": "https://www.synology.com/en-global/security/advisory/Synology_SA_24_04"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.synology.com/en-global/security/advisory/Synology_SA_24_04"}], "sourceIdentifier": "security@synology.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-129"}], "source": "security@synology.com", "type": "Secondary"}]}