Vulnerability Details CVE-2024-47264
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in agent-related functionality in Synology Active Backup for Business before 2.7.1-13234, 2.7.1-23234 and 2.7.1-3234 allows remote authenticated users with administrator privileges to delete arbitrary files via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.9%
CVSS Severity
CVSS v3 Score 4.9
Products affected by CVE-2024-47264
-
cpe:2.3:a:synology:active_backup_for_business_agent:-
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.0.0-0284
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.0.0-0297
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.0.1-0403
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.0.2-0468
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.0.3-0472
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.0.4-0621
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.1.0-0985
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.1.0-0993
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.1.1-1124
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.1.1-1125
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.2.0-2070
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.2.0-2074
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.3.0-2153
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.4.0-2234
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.4.1-2321
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.4.2-2339
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.4.2-2341
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.5.0-2631
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.5.1-2634
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.5.1-2717
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.6.0-3032
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.6.0-3101
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.6.1-3052
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.6.2-3081
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.6.3-3101
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.7.0-3218
-
cpe:2.3:a:synology:active_backup_for_business_agent:2.7.0-3221
-
cpe:2.3:o:synology:diskstation_manager:6.2
-
cpe:2.3:o:synology:diskstation_manager:7.1
-
cpe:2.3:o:synology:diskstation_manager:7.2