High severity7.2NVD Advisory· Published Jul 23, 2025· Updated Jun 17, 2026
CVE-2024-53286
CVE-2024-53286
Description
Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in DDNS Record functionality in Synology Router Manager (SRM) before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to execute arbitrary code via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.3.1-9346-11
- Range: 1.3
Patches
Vulnerability mechanics
References
1- www.synology.com/en-global/security/advisory/Synology_SA_24_16nvdVendor Advisory
News mentions
0No linked articles in our index yet.