{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-07T01:27:28.184","vulnerabilities":[{"cve":{"id":"CVE-2024-11131","sourceIdentifier":"security@synology.com","published":"2025-03-19T03:15:12.850","lastModified":"2026-01-16T15:40:16.353","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability regarding out-of-bounds read is found in the video interface. This allows remote attackers to execute arbitrary code via unspecified vectors. The following models with Synology Camera Firmware versions before 1.2.0-0525 may be affected: BC500, CC400W and TC500."},{"lang":"es","value":"Se ha detectado una vulnerabilidad relacionada con la lectura fuera de los límites en la interfaz de vídeo. Esto permite a atacantes remotos ejecutar código arbitrario mediante vectores no especificados. Los siguientes modelos con versiones de Synology Camera Firmware anteriores a la 1.2.0-0525 podrían verse afectados: BC500, CC400W y TC500."}],"metrics":{"cvssMetricV31":[{"source":"security@synology.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"security@synology.com","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:synology:tc500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.2.0-0525","matchCriteriaId":"37BED664-E51F-4729-9890-8F3ED6A77EAF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:synology:tc500:-:*:*:*:*:*:*:*","matchCriteriaId":"582C2C89-3351-4DC6-B40A-7E2E4CA6AFEA"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:synology:cc400w_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.2.0-0525","matchCriteriaId":"503DB5FE-CFE6-46D6-BB0B-F701718D08D6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:synology:cc400w:-:*:*:*:*:*:*:*","matchCriteriaId":"C80838B6-25A0-4C7F-8D0B-356E0BDF7BA3"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:synology:bc500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.2.0-0525","matchCriteriaId":"CEA5E69C-54EF-455E-ABBC-BC5C47B508AA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:synology:bc500:-:*:*:*:*:*:*:*","matchCriteriaId":"5FD618BD-29BD-4F43-9BEF-F73065247580"}]}]}],"references":[{"url":"https://www.synology.com/en-global/security/advisory/Synology_SA_24_24","source":"security@synology.com","tags":["Vendor Advisory"]}]}}]}