Zero-Day Research | Fixes Available

Fortinet's team of dedicated expert researchers and analysts examine many third party products and software applications daily, looking for weaknesses and exploitable vulnerabilities. When a vulnerability is found the Fortiguard Lab teams work together to create protective measures that can be delivered to our customers and notify the software/product vendor of the vulnerability. Learn More

Please view our Responsible Disclosure Policies

Fortinet Discovers Synology Cloud Station Backup DLL Preloading Vulnerability

Discovered: Jul 06, 2017 Released: Oct 20, 2017 Risk CVE-2017-11157
Fortinet Discovers Synology DSM Video Station Cross-Site Scripting Vulnerability II

Discovered: Nov 30, 2015 Released: Mar 16, 2017 Risk CVE-2015-9105
Foritinet Discovers Synology DSM Audio Station Cross-Site Scripting Vulnerability

Discovered: Nov 24, 2015 Released: Mar 16, 2017 Risk CVE-2015-9104
Fortinet Discovers Synology DSM Photo Station Cross-Site Scripting Vulnerability IV

Discovered: Nov 30, 2015 Released: Mar 16, 2017 Risk CVE-2015-9102
Fortinet Discovers Synology DSM Note Station Cross-Site Scripting Vulnerability I

Discovered: Nov 30, 2015 Released: Mar 16, 2017 Risk CVE-2015-9103
Fortinet Discovers Synology DSM Note Station Cross-Site Scripting Vulnerability II

Discovered: Nov 30, 2015 Released: Mar 16, 2017 Risk CVE-2015-9103
Fortinet Discovers Synology DSM Photo Station Cross-Site Scripting Vulnerability III

Discovered: Nov 30, 2015 Released: Mar 16, 2017 Risk CVE-2015-9102
Fortinet Discovers Synology Assistant DLL Preloading Vulnerability

Discovered: Jul 06, 2017 Released: Oct 20, 2017 Risk CVE-2017-11160
Fortinet Discovers Synology Cloud Station Drive DLL Preloading Vulnerability

Discovered: Jul 06, 2017 Released: Oct 20, 2017 Risk CVE-2017-11158
Fortinet Discovers Synology Photo Station Uploader DLL Preloading Vulnerability

Discovered: Jul 06, 2017 Released: Oct 20, 2017 Risk CVE-2017-11159
Fortinet Discovers Synology DSM Photo Station Cross-Site Scripting Vulnerability I

Discovered: Nov 19, 2015 Released: Mar 16, 2017 Risk CVE-2015-9102
Fortinet Discovers Synology DSM Photo Station Cross-Site Scripting Vulnerability II

Discovered: Nov 23, 2015 Released: Mar 16, 2017 Risk CVE-2015-9102
Fortinet Discovers Synology DSM Video Station Cross-Site Scripting Vulnerability I

Discovered: Nov 30, 2015 Released: Mar 16, 2017 Risk CVE-2015-9105