Medium severity6.1NVD Advisory· Published May 27, 2026· Updated Jun 2, 2026
CVE-2025-13593
CVE-2025-13593
Description
Origin validation error vulnerability in Synology ActiveProtect Agent before 1.1.0-0439 allows local users to write arbitrary files with restricted content and conduct denial-of-service during installation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.1.0-0439
Patches
Vulnerability mechanics
References
1- www.synology.com/en-global/security/advisory/Synology_SA_25_15nvdVendor Advisory
News mentions
1- Synology: 10 CVEs Disclosed Across NAS, BeeStation, and Backup ProductsVypr Intelligence · May 27, 2026