CVE-2024-29228 | Synology Surveillance Station prior 9.2.0-9289/9.2.0-11289 WebAPI GetStmUrlPath authorization (SA_24_04)

CVE-2024-29228 | Synology Surveillance Station prior 9.2.0-9289/9.2.0-11289 WebAPI GetStmUrlPath authorization (SA_24_04)

A vulnerability classified as problematic was found in Synology Surveillance Station. This vulnerability affects the function GetStmUrlPath of the component WebAPI. The manipulation leads to missing authorization. This vulnerability was named CVE-2024-29228. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.