Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-4475
HistoryAug 22, 2023 - 7:16 p.m.

CVE-2023-4475

2023-08-2219:16:41
CWE-552
[email protected]
web.nvd.nist.gov
asustor data master
arbitrary file movement
file renaming
unintended directories
vulnerability
adm 4.0.6.ris1
adm 4.1.0
adm 4.2.2.ri61

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

0.0004 Low

EPSS

Percentile

15.5%

JSON

An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master (ADM) allows an attacker to exploit the file renaming feature to move files to unintended directories. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below.

Affected configurations

NVD
Node
asustordata_masterRange4.0.6.ris14.2.2.ri61

Related

cvelist 1
prion 1
cve 1
openvas 1
cvelist
cvelist
CVE-2023-4475 An Arbitrary File Movement vulnerability was found on the ADM
2023-08-22 09:02:30
prion
prion
Design/Logic Flaw
2023-08-22 19:16:00
cve
cve
CVE-2023-4475
2023-08-22 19:16:41
openvas
openvas
ASUSTOR ADM Multiple Vulnerabilities (AS-2023-009, AS-2023-010, AS-2023-011, AS-2023-012)
2023-08-21 00:00:00

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

0.0004 Low

EPSS

Percentile

15.5%

JSON
Related for NVD:CVE-2023-4475
cvelist1prion1cve1openvas1