Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

diskstation_manager Vendor: synology

About This Product

diskstation_manager is a software product offered by synology. This product is widely deployed in production environments, making vulnerability monitoring essential for organizations relying on it. Security vulnerabilities in products of this category can affect system availability, data confidentiality, and integrity across entire networks. The significant number of reported vulnerabilities indicates this product has received substantial security scrutiny and community focus over time. Regular assessment of known vulnerabilities and timely patching are fundamental components of responsible system administration for any deployment of this software.

Vulnerability Landscape Summary

SecUtils has identified 125 known vulnerabilities affecting synology diskstation_manager. This includes 19 critical-severity issues and 44 high-severity issues that warrant immediate attention. Vulnerabilities in this product have been disclosed spanning from 2013 to 2025, indicating a sustained research interest and ongoing security attention. 61 medium-severity issues and 1 low-severity issue complete the vulnerability landscape. Organizations should prioritize patching based on deployment context, asset criticality, and exploitation likelihood rather than severity alone.

Known Vulnerabilities

ID	Date Published	Last Modified	Severity (CVSSv3)	Severity (CVSSv2)	Exploit Available
CVE-2013-6987	2013-12-31	2025-04-11	-	7.5	Likely
CVE-2013-6955	2014-01-09	2025-04-11	-	10.0	Likely
CVE-2014-2264	2014-03-02	2025-04-12	-	7.8	Likely
CVE-2012-1556	2014-09-12	2025-04-12	-	4.3	Likely
CVE-2015-2809	2015-04-01	2025-04-12	-	5.0	Likely
CVE-2015-4655	2015-06-18	2025-04-12	-	4.3	Likely
CVE-2017-9553	2017-07-24	2025-04-20	7.5	4.3	Likely
CVE-2017-9554	2017-07-24	2025-04-20	5.3	5.0	Likely
CVE-2017-12076	2017-08-28	2025-04-20	4.9	4.0	Likely
CVE-2017-14491	2017-10-04	2025-04-20	9.8	7.5	Likely
CVE-2017-15889	2017-12-04	2025-04-20	8.8	6.5	Likely
CVE-2017-15894	2017-12-08	2025-04-20	6.5	4.0	Likely
CVE-2017-16766	2017-12-22	2025-04-20	6.5	6.4	Likely
CVE-2017-5753	2018-01-04	2025-01-14	5.6	4.7	Unknown
CVE-2018-7170	2018-03-06	2025-01-14	5.3	3.5	Unknown
CVE-2018-7184	2018-03-06	2025-01-14	7.5	5.0	Likely
CVE-2018-7185	2018-03-06	2025-01-14	7.5	5.0	Likely
CVE-2018-8897	2018-05-08	2024-11-21	7.8	7.2	Unknown
CVE-2017-12075	2018-06-08	2025-01-14	7.2	6.5	Likely
CVE-2018-8916	2018-06-08	2025-01-14	6.3	4.0	Likely
CVE-2018-13280	2018-07-30	2025-01-14	7.4	4.3	Likely
CVE-2018-13281	2018-10-31	2025-01-14	4.3	4.0	Likely
CVE-2018-1160	2018-12-20	2026-02-13	9.8	10.0	Likely
CVE-2018-8917	2018-12-24	2025-01-14	6.5	3.5	Unknown
CVE-2018-8919	2018-12-24	2025-01-14	8.3	5.0	Likely
CVE-2018-8920	2018-12-24	2025-01-14	7.2	6.5	Likely
CVE-2017-16774	2019-04-01	2025-01-14	6.5	3.5	Unknown
CVE-2018-13284	2019-04-01	2025-01-14	7.5	9.0	Likely
CVE-2018-13286	2019-04-01	2025-01-14	6.5	4.0	Likely
CVE-2018-13291	2019-04-01	2025-01-14	4.3	4.0	Likely
CVE-2018-13293	2019-04-01	2025-01-14	5.9	3.5	Unknown
CVE-2019-3870	2019-04-09	2025-01-14	6.1	3.6	Unknown
CVE-2019-9511	2019-08-13	2025-01-14	7.5	7.8	Likely
CVE-2019-9513	2019-08-13	2025-01-14	7.5	7.8	Likely
CVE-2019-9514	2019-08-13	2025-01-14	7.5	7.8	Likely
CVE-2019-9515	2019-08-13	2025-01-14	7.5	7.8	Likely
CVE-2019-9516	2019-08-13	2025-01-14	6.5	6.8	Likely
CVE-2019-9517	2019-08-13	2025-01-14	7.5	7.8	Likely
CVE-2019-9518	2019-08-13	2025-01-14	7.5	7.8	Likely
CVE-2019-14907	2020-01-21	2025-01-14	6.5	2.6	Unknown
CVE-2019-19344	2020-01-21	2025-01-14	6.5	4.0	Likely
CVE-2020-27648	2020-10-29	2025-01-14	8.3	6.8	Likely
CVE-2020-27650	2020-10-29	2025-01-14	5.8	4.3	Likely
CVE-2020-27652	2020-10-29	2025-01-14	8.3	5.1	Unknown
CVE-2020-27653	2020-10-29	2025-01-14	8.3	5.1	Unknown
CVE-2020-27656	2020-10-29	2025-01-14	6.5	4.3	Likely
CVE-2021-3156	2021-01-26	2025-11-10	7.8	7.2	Unknown
CVE-2021-26560	2021-02-26	2025-01-14	9.0	5.8	Likely
CVE-2021-26561	2021-02-26	2025-01-14	9.0	6.8	Likely
CVE-2021-26562	2021-02-26	2025-01-14	9.0	6.8	Likely
CVE-2021-26563	2021-02-26	2025-01-14	8.2	4.6	Unknown
CVE-2021-26564	2021-02-26	2025-01-14	8.3	5.8	Likely
CVE-2021-26565	2021-02-26	2025-01-14	8.3	4.3	Likely
CVE-2021-26566	2021-02-26	2025-01-14	8.3	6.8	Likely
CVE-2021-26567	2021-02-26	2025-01-14	7.8	6.5	Likely
CVE-2021-26569	2021-03-12	2025-01-14	9.8	6.8	Likely
CVE-2021-27646	2021-03-12	2025-01-14	9.8	7.5	Likely
CVE-2021-27647	2021-03-12	2025-01-14	9.8	7.5	Likely
CVE-2021-29083	2021-04-01	2025-01-14	7.2	9.0	Likely
CVE-2021-31439	2021-05-21	2025-01-14	8.8	5.8	Unknown
CVE-2021-29088	2021-06-01	2025-01-14	7.8	4.6	Unknown
CVE-2021-33182	2021-06-01	2025-01-14	5.0	4.0	Likely
CVE-2021-27649	2021-06-23	2025-01-14	9.8	7.5	Likely
CVE-2021-29084	2021-06-23	2025-01-14	7.5	5.0	Likely
CVE-2021-29085	2021-06-23	2025-01-14	8.6	5.0	Likely
CVE-2021-29086	2021-06-23	2025-01-14	5.3	5.0	Likely
CVE-2021-29087	2021-06-23	2025-01-14	7.5	5.0	Likely
CVE-2022-22680	2022-02-07	2025-01-14	5.3	5.0	Likely
CVE-2021-43925	2022-02-07	2025-01-14	4.7	7.5	Likely
CVE-2021-43926	2022-02-07	2025-01-14	4.7	7.5	Likely
CVE-2021-43927	2022-02-07	2025-01-14	4.7	7.5	Likely
CVE-2021-43929	2022-02-07	2025-01-14	6.5	4.0	Likely
CVE-2022-22679	2022-02-07	2025-01-14	6.5	4.0	Likely
CVE-2021-44142	2022-02-21	2025-04-23	8.8	9.0	Likely
CVE-2022-22687	2022-03-25	2025-01-14	9.8	7.5	Likely
CVE-2022-22688	2022-03-25	2025-01-14	8.8	6.5	Likely
CVE-2022-27610	2022-07-27	2024-11-21	6.5	-	-
CVE-2022-22683	2022-07-28	2025-01-14	10.0	-	-
CVE-2022-22684	2022-07-28	2025-01-14	7.2	-	-
CVE-2022-27614	2022-07-28	2025-01-14	5.3	-	-
CVE-2022-27616	2022-08-03	2025-01-14	7.2	-	-
CVE-2022-27617	2022-08-03	2025-01-14	5.0	-	-
CVE-2022-27618	2022-08-03	2025-01-14	6.8	-	-
CVE-2022-27620	2022-08-03	2025-01-14	6.8	-	-
CVE-2022-27621	2022-08-03	2025-01-14	5.5	-	-
CVE-2022-27624	2022-10-20	2025-01-14	10.0	-	-
CVE-2022-27625	2022-10-20	2025-01-14	10.0	-	-
CVE-2022-27626	2022-10-20	2025-01-14	10.0	-	-
CVE-2022-3576	2022-10-20	2025-01-14	5.3	-	-
CVE-2022-27622	2022-10-25	2025-01-14	4.1	-	-
CVE-2022-27623	2022-10-25	2025-01-14	7.4	-	-
CVE-2023-0142	2023-06-13	2025-01-14	6.5	-	-
CVE-2023-2729	2023-06-13	2025-01-14	5.9	-	-
CVE-2024-0854	2024-01-24	2025-01-14	5.4	-	-
CVE-2024-29227	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29228	2024-03-28	2025-01-14	7.7	-	-
CVE-2024-29229	2024-03-28	2025-01-14	7.7	-	-
CVE-2024-29230	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29231	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29232	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29233	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29234	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29235	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29236	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29237	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29238	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29239	2024-03-28	2025-08-04	5.4	-	-
CVE-2024-29240	2024-03-28	2025-08-04	4.3	-	-
CVE-2024-29241	2024-03-28	2025-08-12	9.9	-	-
CVE-2024-10443	2024-11-15	2025-09-16	9.8	-	-
CVE-2023-52943	2024-12-04	2025-03-06	4.3	-	-
CVE-2023-52944	2024-12-04	2025-03-06	4.3	-	-
CVE-2024-47264	2025-02-13	2026-02-26	4.9	-	-
CVE-2024-47265	2025-02-13	2026-02-26	6.5	-	-
CVE-2024-47266	2025-02-13	2026-02-26	2.7	-	-
CVE-2024-10441	2025-03-19	2025-11-17	9.8	-	-
CVE-2024-10444	2025-03-19	2025-11-17	7.5	-	-
CVE-2024-10445	2025-03-19	2025-11-17	4.3	-	-
CVE-2024-10442	2025-03-19	2026-01-16	10.0	-	-
CVE-2024-50629	2025-03-19	2025-11-17	5.3	-	-
CVE-2025-1021	2025-04-23	2025-11-17	7.5	-	-
CVE-2024-45538	2025-12-04	2025-12-05	9.6	-	-
CVE-2024-45539	2025-12-04	2025-12-05	7.5	-	-
CVE-2024-5401	2025-12-04	2025-12-05	4.3	-	-
CVE-2025-2848	2025-12-04	2026-02-09	6.3	-	-

How SecUtils Interprets Product Data

SecUtils normalizes and enriches National Vulnerability Database (NVD) records for synology diskstation_manager by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and structuring the data for rapid analysis and asset correlation. For every vulnerability listed, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference information to enable organizations to prioritize patching and risk assessment efficiently. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for vulnerability management and security operations.