VYPR
Unrated severityNVD Advisory· Published May 30, 2015· Updated Jun 17, 2026

CVE-2015-2851

CVE-2015-2851

Description

client_chown in the sync client in Synology Cloud Station 1.1-2291 through 3.1-3320 on OS X allows local users to change the ownership of arbitrary files, and consequently obtain root access, by specifying a filename.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • cpe:2.3:a:synology:cloud_station:1.1-2291:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:synology:cloud_station:1.1-2291:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:2.0-2291:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:2.0-2402:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:2.1-2561:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:2.1-2570:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:2.1-2577:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:3.0-3005:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:3.0-3103:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:3.0-3108:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:3.0-3109:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:3.0-3111:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:3.1-3317:*:*:*:*:*:*:*
    • cpe:2.3:a:synology:cloud_station:3.1-3320:*:*:*:*:*:*:*
    • (no CPE)range: >=1.1-2291, <=3.1-3320

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.