CVE-2024-47263: Path Traversal
Published Jun 3, 2026
·Updated
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Backup.Repository webapi component in Synology Hyper Backup before 4.1.2-4036 allows remote authenticated users with administrator privileges to write specific files containing non-sensitive information via unspecified vectors.
Affected Software
2 affected components
Synology Hyper Backup<4.1.2-4036
Synology Hyper Backup<4.1.2-4036
Event History
Jun 3, 2026
CVE Published
via MITRE·01:35 PM
Data Sourced
via MITRE·01:35 PM
DescriptionSeverityWeakness
Data Sourced
via NVD·02:16 PM
DescriptionSeverityWeaknessAffected Software
Frequently Asked Questions
1
What is the severity of CVE-2024-47263?
The severity of CVE-2024-47263 is rated medium with a score of 4.1.
2
How do I fix CVE-2024-47263?
To fix CVE-2024-47263, update to Synology Hyper Backup version 4.1.2-4036 or later.
3
What type of vulnerability is CVE-2024-47263?
CVE-2024-47263 is a Path Traversal vulnerability.
4
Who can exploit CVE-2024-47263?
CVE-2024-47263 can be exploited by remote authenticated users with administrator privileges.
5
What is the impact of CVE-2024-47263?
The impact of CVE-2024-47263 allows attackers to write specific files containing non-sensitive information.