Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
CVE-2025-12686: Synology BeeStation Manager and OS: Unchecked Input Allows Code Execution
CVE-2025-12686
Summary
A security issue in Synology BeeStation Manager and OS allows hackers to run unauthorized code on your system if they send the right information to the AdminCenter. This could allow them to take control of your system. You should update to the latest version of Synology BeeStation Manager and OS to fix this issue.
Original title
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code vi...
Original description
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors.
nvd CVSS3.1
9.8
Vulnerability type
CWE-120
Classic Buffer Overflow
Published: 27 May 2026 · Updated: 31 May 2026 · First seen: 27 May 2026