Tag: Synology

  • Synology Patches BeeStation Zero-Days Exposed at Pwn2Own Ireland

    Synology Patches BeeStation Zero-Days Exposed at Pwn2Own Ireland

    Synology has patched multiple critical vulnerabilities in BeeStation OS following their public exploitation during the Pwn2Own Ireland 2025 competition. The flaws, collectively known as the Synology BeeStation zero-days, allowed remote attackers to execute arbitrary code on affected NAS devices. Critical RCE Flaw Demonstrated Live The main vulnerability, tracked as CVE-2025-12686, was caused by a buffer…