CVE Advisory
2025
Nguyen Ba Nam Dung
Also known as: greengrass, Orange TsailαΊ§m
Researcher
Security Research
A code reader trying to get bounties through methods varying from nobrain fuzzing to implementation flaw finding. Targeting Synology NAS and QNAP NAS
8
Advisories
0
Publications
1
Recognition
3
Vendors
Activity Overview
Last 12 Months Activity
Jul
Aug
Sep
Oct
2
Nov
2
Dec
Jan
Feb
Mar
1
Apr
May
Jun
Top Vendors
Synology 5 vulnerabilities
NeoJapan 2 vulnerabilities
QNAP 1 vulnerability
Discovery Timeline
2025
7 advisories , 1 award π Advisory
CVE-2025-59387
QNAP Package Unauthenticated Remote Execution
QNAP
π Advisory
VCSA-SYNOLOGY-2025-01
Synology Package Unauthenticated Remote Execution
Synology
π Recognition
Top 5 Pwn2Own Ireland (IoT) 2025
Canon, Lexmark, Home Assistant, Philips
π
Pwn2Own
π Advisory
VCSA-SYNOLOGY-2025-02
Synology Default Package Post-Auth SQL Injection leads to RCE
Synology
π Advisory
VCSA-DESKNET-2025-01
Desknet's NEO Pre-Auth Command Injection
NeoJapan
π Advisory
VCSA-DESKNET-2025-02
Desknet's NEO Pre-Auth Buffer Overflow
NeoJapan
π Advisory
VCSA-2026-Q1-02
Synology Package Pre-Auth Remote Code Execution
Synology
π Advisory
VCSA-2026-Q1-01
Synology Common Package Normal User Remote Code Execution
Synology
CVE Advisories 8
Security vulnerabilities discovered and disclosed
CVE Advisory
2025 CVE Advisory
2025 CVE Advisory
2025 CVE Advisory
2025 CVE Advisory
2025 CVE Advisory
2025 CVE Advisory
2026 Recognition & Highlights 1
Bug bounty rewards and achievements
Recognition
2025