{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T21:44:09.762","vulnerabilities":[{"cve":{"id":"CVE-2023-5746","sourceIdentifier":"security@synology.com","published":"2023-10-25T18:17:44.770","lastModified":"2024-11-21T08:42:24.153","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability regarding use of externally-controlled format string is found in the cgi component. This allows remote attackers to execute arbitrary code via unspecified vectors. The following models with Synology Camera Firmware versions before 1.0.5-0185 may be affected: BC500 and TC500."},{"lang":"es","value":"Se encuentra una vulnerabilidad relacionada con el uso de cadenas de formato controladas externamente en el componente cgi. Esto permite a atacantes remotos ejecutar código arbitrario a través de vectores no especificados. Los siguientes modelos con versiones de Synology Camera Firmware anteriores a 1.0.5-0185 pueden verse afectados: BC500 y TC500."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-134"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:synology:bc500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.5-0185","matchCriteriaId":"606E80D6-82AA-42EB-AD3F-DFB34847F7E4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:synology:bc500:-:*:*:*:*:*:*:*","matchCriteriaId":"5FD618BD-29BD-4F43-9BEF-F73065247580"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:synology:tc500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.0.5-0185","matchCriteriaId":"18086F22-1F7B-4B3D-BF18-DFA3B0DD6783"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:synology:tc500:-:*:*:*:*:*:*:*","matchCriteriaId":"582C2C89-3351-4DC6-B40A-7E2E4CA6AFEA"}]}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_23_11","source":"security@synology.com","tags":["Vendor Advisory"]},{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_23_11","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}