Primary

Context

Synology Hyper Backup Explorer MinGW DLL Component Untrusted Control Sphere Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Patched

A vulnerability has been identified in the MinGW DLL component of Synology Hyper Backup Explorer, prior to version 3.0.1-0156. This vulnerability allows local users to execute arbitrary code by exploiting an inclusion of functionality from an untrusted control sphere.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution on the affected system.

Remediation

Users are advised to update Synology Hyper Backup Explorer to version 3.0.1-0156 or later.

Added: Jun 3, 2026, 2:25 PM

Updated: Jun 3, 2026, 2:25 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

0.0

relevance

9.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

0.0

relevance

9.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Synology Hyper Backup Explorer MinGW DLL Component Untrusted Control Sphere Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

Synology Hyper Backup Explorer

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating