{"vulnerability": "CVE-2024-10443", "sightings": [{"uuid": "0fa8e481-8828-49e9-922d-761e9dfc1039", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "seen", "source": "https://thehackernews.com/2024/11/synology-urges-patch-for-critical-zero.html", "content": "", "creation_timestamp": "2024-11-05T09:34:00.000000Z"}, {"uuid": "21f4f8fa-95f9-4039-902a-386682db70a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113486484552451899", "content": "", "creation_timestamp": "2024-11-15T10:25:29.808961Z"}, {"uuid": "72699ed0-fcdb-491b-bd60-96e1c6741572", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "published-proof-of-concept", "source": "Telegram/oFqwiUXLokWcMdQt8nL3gjZLx_0WSVjYX8iHacHNnEEPeQ", "content": "", "creation_timestamp": "2024-11-05T17:02:54.000000Z"}, {"uuid": "2107bf67-9a96-4296-bd8b-318be94e4551", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lkuzkroc7n2m", "content": "", "creation_timestamp": "2025-03-21T10:40:19.941504Z"}, {"uuid": "27e944b7-ab61-47e9-b2bc-5644dca3a1bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-207/", "content": "", "creation_timestamp": "2025-04-09T03:00:00.000000Z"}, {"uuid": "1cf80cf0-9295-4cdd-ae85-c863e5f50578", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8328", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-10443\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Improper neutralization of special elements used in a command ('Command Injection') vulnerability in Task Manager component in Synology BeePhotos before 1.0.2-10026 and 1.1.0-10053 and Synology Photos before 1.6.2-0720 and 1.7.0-0795 allows remote attackers to execute arbitrary code via unspecified vectors.\n\ud83d\udccf Published: 2024-11-15T10:23:51.233Z\n\ud83d\udccf Modified: 2025-03-21T09:48:42.127Z\n\ud83d\udd17 References:\n1. https://www.synology.com/en-global/security/advisory/Synology_SA_24_18\n2. https://www.synology.com/en-global/security/advisory/Synology_SA_24_19", "creation_timestamp": "2025-03-21T10:20:23.000000Z"}, {"uuid": "e6c3bc02-81a0-4e3c-b011-d087fb25760a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "seen", "source": "https://t.me/cvedetector/11060", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10443 - Synology Task Manager Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10443 \nPublished : Nov. 15, 2024, 11:15 a.m. | 36\u00a0minutes ago \nDescription : Improper neutralization of special elements used in a command ('Command Injection') vulnerability in Task Manager component in Synology BeePhotos before 1.0.2-10026 and 1.1.0-10053 and Synology Photos before 1.6.2-0720 and 1.7.0-0795 allows remote attackers to execute arbitrary code via unspecified vectors. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T13:15:35.000000Z"}, {"uuid": "134a764e-2079-48ad-88d8-524a8f4dfe3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "seen", "source": "https://t.me/thehackernews/5832", "content": "Synology has released a patch for a critical zero-day vulnerability (CVE-2024-10443) affecting millions of NAS devices, which allows remote code execution without user interaction. \n \nRead: https://thehackernews.com/2024/11/synology-urges-patch-for-critical-zero.html", "creation_timestamp": "2024-11-05T10:37:25.000000Z"}, {"uuid": "28acbd90-1814-4a19-b113-d2a1d734b122", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "exploited", "source": "https://t.me/Russian_OSINT/4816", "content": "\u2757\ufe0f\u041d\u0430 Pwn2Own \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043d\u043e\u0432\u044b\u0439 zero-day \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0434\u043b\u044f \ud83d\udda5 Synology NAS\n\n\u041d\u0430 \u043a\u043e\u043d\u0444\u0435\u0440\u0435\u043d\u0446\u0438\u0438 \u043f\u043e \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Pwn2Own Ireland 2024 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c-\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u0438\u043a \u0420\u0438\u043a \u0434\u0435 \u042f\u0433\u0435\u0440 \u0438\u0437 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 Midnight Blue \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043d\u0443\u043b\u0435\u0432\u043e\u0433\u043e \u0434\u043d\u044f \u0432 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445 NAS Synology DiskStation \u0438 BeeStation, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0443\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0443 \u0438 \u0438\u0441\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 root.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u2757\ufe0fzero-click, \u0442\u043e \u0435\u0441\u0442\u044c \u043d\u0435\u0442 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0438 \u0441 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c \u0434\u043b\u044f \u0430\u043a\u0442\u0438\u0432\u0430\u0446\u0438\u0438 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430.\n\n\ud83e\udda0CVE-2024-10443 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u043e \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 RISK:STATION \u043e\u0442 Midnight Blue. \n\n\u0422\u0430\u0439\u0432\u0430\u043d\u044c\u0441\u043a\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0445\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0434\u0430\u043d\u043d\u044b\u0445 (NAS) Synology \u0443\u0441\u0442\u0440\u0430\u043d\u0438\u043b \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0431\u0440\u0435\u0448\u044c \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 DiskStation \u0438 BeePhotos.\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Midnight Blue \u043f\u043e\u0434\u0447\u0451\u0440\u043a\u0438\u0432\u0430\u0435\u0442, \u0447\u0442\u043e \u0434\u043b\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f: \u0434\u043b\u044f DiskStation (\u0432\u0435\u0440\u0441\u0438\u044f SynologyPhotos 1.7.0-0795 \u0438 1.6.2-0720) \u0438 \u0434\u043b\u044f BeeStation (BeePhotos \u0432\u0435\u0440\u0441\u0438\u0438 1.1.0-10053 \u0438 1.0.2-10026). \u0412 \u0441\u043b\u0443\u0447\u0430\u0435 \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u044b SynologyPhotos / BeePhotos, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0437\u0430\u043a\u0440\u044b\u0442\u044c \u043f\u043e\u0440\u0442\u044b 5000 \u0438 5001 + \u0434\u0435\u0430\u043a\u0442\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u0442\u044c QuickConnect. \u0423\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e \u043e\u0441\u0442\u0430\u043d\u0435\u0442\u0441\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c \u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043b\u044f \u0430\u0442\u0430\u043a \u0432\u043d\u0443\u0442\u0440\u0438 LAN, \u0435\u0441\u043b\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043f\u043e\u043b\u0443\u0447\u0438\u0442 \u0444\u0438\u0437\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0434\u043e\u043c\u0430\u0448\u043d\u0435\u0439 \u0441\u0435\u0442\u0438.\n\nNAS-\u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 Synology \u0447\u0430\u0441\u0442\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442 \u0447\u0435\u0440\u0435\u0437 \u043f\u0440\u044f\u043c\u044b\u0435 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u043f\u043e \u0438\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0443/QuickConnect \u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u043b\u0435\u0433\u043a\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u0442\u044c \u0438\u0445 \u0447\u0435\u0440\u0435\u0437 Shodan \u0438\u043b\u0438 Censys.\n\n\u2194\ufe0f\u041f\u043e \u043e\u0446\u0435\u043d\u043a\u0430\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 Midnight Blue, \u043e\u0442 1 \u0434\u043e 2 \u043c\u0438\u043b\u043b\u0438\u043e\u043d\u043e\u0432 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 Synology DiskStation \u0438 BeeStation \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443 c\u0435\u0439\u0447\u0430\u0441 \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u043f\u043e\u0434 \u0443\u0433\u0440\u043e\u0437\u043e\u0439.\n\n\ud83d\udc49 @Russian_OSINT", "creation_timestamp": "2024-11-05T16:32:05.000000Z"}, {"uuid": "47bccfe3-1f15-4645-8970-69940bbd5041", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10443", "type": "published-proof-of-concept", "source": "https://t.me/KomunitiSiber/2816", "content": "Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices\nhttps://thehackernews.com/2024/11/synology-urges-patch-for-critical-zero.html\n\nTaiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution.\nTracked as CVE-2024-10443 and dubbed RISK:STATION by Midnight Blue, the zero-day flaw was demonstrated at the Pwn2Own Ireland 2024 hacking contest by security researcher Rick de Jager.\nRISK:STATION is an \"", "creation_timestamp": "2024-11-05T15:11:45.000000Z"}]}