CVSS 3.1 Score 6.5 of 10 (medium)


Published Jun 4, 2024
CWE ID 120


CVE-2024-5463 is a vulnerability known as "BUFFER COPY WITHOUT CHECKING SIZE OF INPUT ('CLASSIC BUFFER OVERFLOW')" and has a risk score of 25. It affects the login component in Synology Camera Firmware versions before 1.1.1-0383, specifically the BC500 and TC500 models. Exploiting this vulnerability allows remote attackers to conduct denial-of-service attacks through unspecified vectors. The base severity is classified as MEDIUM with a base score of 6.5, indicating potential danger to organizations. However, the integrity impact is low, and no confidentiality impact is expected. The attack vector is through the network, and there are no privileges required or user interaction needed for exploitation. The availability impact is also considered low, but it is important to apply updates or patches provided by Synology to remediate this vulnerability effectively. Note: This summary does not include any analysis description as it was stated as "None" in the provided information.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-5463 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options