Synology - Geek Feed

Synology fixes BeeStation zero-days demoed at Pwn2Own Ireland

November 16, 2025November 16, 2025 geekfeed0Tagged 0day, Buffer Overflow, CVE-2025-12686, rce, Remote Code Execution, Synology, vulnerability, Zero-Day

Synology has addressed a critical-severity remote code execution (RCE) vulnerability in BeeStation products that was demonstrated at the recent Pwn2Own hacking competition. The security issue (CVE-2025-12686) is described as a ‘buffer copy without checking the size of input’ problem, and can be exploited to allow arbitrary code execution. It impacts multiple versions of BeeStation OS, the […]

1 min read

Synology hurries out patches for zero-days exploited at Pwn2Own

November 2, 2024November 2, 2024 geekfeed0Tagged NAS, Pwn2Own, Synology, Zero-Click, Zero-Day

Synology, a Taiwanese network-attached storage (NAS) appliance maker, patched two critical zero-days exploited during last week’s Pwn2Own hacking competition within days. Midnight Blue security researcher Rick de Jager found the critical zero-click vulnerabilities (tracked together as CVE-2024-10443 and dubbed RISK:STATION) in the company’s Synology Photos and BeePhotos for BeeStation software. As Synology explains in security advisories published two days after the […]

3 mins read