Critical Patches Fix Synology Chat Server Vulnerabilities
ID: 6d0abb78-a148-5fea-8e5e-4f7b8fa8620c
STIX ID: report--6d0abb78-a148-5fea-8e5e-4f7b8fa8620c
Feed Name: securityonline.info
Threat Score
Synology released an urgent security advisory for Chat Server addressing multiple vulnerabilities — primarily CVE-2026-40541 (CVSS 9.0) that permits remote authenticated arbitrary file read/write and DoS — along with CVE-2026-9548 and CVE-2026-9491; administrators should immediately upgrade affected DSM versions (e.g., 7.2.1, 7.2.2, 7.3) to Chat Server 2.4.5-22148 or newer to mitigate the risk.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.