Lucene search
+L

73 matches found

Vulnrichment
Vulnrichment
added 2023/08/22 9:2 a.m.11 views

CVE-2023-4475 An Arbitrary File Movement vulnerability was found on the ADM

An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master ADM allows an attacker to exploit the file renaming feature to move files to unintended directories. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...

7.5CVSS6.8AI score0.00159EPSS
Exploits0References1
CVE
CVE
added 2023/08/22 9:2 a.m.45 views

CVE-2023-4475

ASUSTOR Data Master (ADM) is affected by an Arbitrary File Movement vulnerability via the file renaming feature. Affected: ADM 4.0.6.RIS1 and below, ADM 4.1.0 and below, ADM 4.2.2.RI61 and below. Root cause: exploitation of the file renaming mechanism to move files into unintended directories. Im...

7.5CVSS6.1AI score0.00159EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/22 9:2 a.m.27 views

CVE-2023-4475 An Arbitrary File Movement vulnerability was found on the ADM

An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master ADM allows an attacker to exploit the file renaming feature to move files to unintended directories. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...

7.5CVSS7.9AI score0.00159EPSS
Exploits0References1
CVE
CVE
added 2023/08/22 8:57 a.m.43 views

CVE-2023-3699

CVE-2023-3699 affects ASUSTOR Data Master (ADM) on ASUSTOR NAS. The issue is an improper privilege management that allows an unprivileged local user to modify the storage devices configuration. Affected ADM versions: 4.0.6.RIS1 and below; 4.1.0 and below; 4.2.2.RI61 and below. Impact is the abili...

8.7CVSS5.8AI score0.00145EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/22 8:57 a.m.13 views

CVE-2023-3699 An Improper Privilege Management vulnerability was found on the ADM

An Improper Privilege Management vulnerability was found in ASUSTOR Data Master ADM allows an unprivileged local users to modify the storage devices configuration. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...

8.7CVSS6.6AI score0.00145EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/22 8:57 a.m.28 views

CVE-2023-3699 An Improper Privilege Management vulnerability was found on the ADM

An Improper Privilege Management vulnerability was found in ASUSTOR Data Master ADM allows an unprivileged local users to modify the storage devices configuration. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...

8.7CVSS8.5AI score0.00145EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.6 views

ASUSTOR Data Master 安全漏洞

ASUSTOR Data Master is a proprietary operating system for ASUSTOR NAS from ASUS in China, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it easy to get started right away. A security vulnerability exists in ASUSTOR Data Master, which stems from the presenc...

7.5CVSS5.9AI score0.00159EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/22 12:0 a.m.5 views

PT-2023-7628 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 and below ASUSTOR Data Master ADM versions 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: The issue is related to improper privilege management in ASUSTOR Data...

8.7CVSS5.9AI score0.00145EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.6 views

ASUSTOR Data Master 安全漏洞

ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An authorization issue vulnerability exists in ASUSTOR Data Master, which arises from improper privilege management and can be exploited by an unprivileged local attacker to modify the storage device...

8.7CVSS6.6AI score0.00145EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/22 12:0 a.m.6 views

PT-2023-7490 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 and below ASUSTOR Data Master ADM versions 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: An Arbitrary File Movement issue was found in ASUSTOR Data Master ADM,...

7.5CVSS5.5AI score0.00159EPSS
Exploits0References5
CNVD
CNVD
added 2023/08/19 12:0 a.m.16 views

ASUSTOR Data Master Input Validation Error Vulnerability (CNVD-2023-64212)

ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An input validation error vulnerability exists in ASUSTOR Data Master, which stems from the Printer service's inability to adequately process user input, and can be exploited by an attacker to navigate to anoth...

8.5CVSS6.7AI score0.00532EPSS
Exploits0References1
NVD
NVD
added 2023/08/17 10:15 a.m.28 views

CVE-2023-2910

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

8.8CVSS9.1AI score0.01341EPSS
Exploits0References1
OSV
OSV
added 2023/08/17 10:15 a.m.5 views

CVE-2023-2910

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

8.8CVSS6AI score0.01341EPSS
Exploits0References1
Prion
Prion
added 2023/08/17 10:15 a.m.25 views

Command injection

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

6.5CVSS8.9AI score0.01341EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/17 9:25 a.m.14 views

CVE-2023-2910 A Command injection vulnerability was found on Printer service of ADM

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

8.8CVSS7.9AI score0.01341EPSS
Exploits0References1
CVE
CVE
added 2023/08/17 9:25 a.m.47 views

CVE-2023-2910

CVE-2023-2910 affects ASUSTOR Data Master (ADM) Printer service. The root cause is improper neutralization of special elements used in a command (command injection) which enables remote, unauthenticated abuse to execute arbitrary commands. Affected ADM versions include 4.0.6.RIS1, 4.1.0 and below...

8.8CVSS9.1AI score0.01341EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/17 9:25 a.m.31 views

CVE-2023-2910 A Command injection vulnerability was found on Printer service of ADM

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

8.8CVSS9.2AI score0.01341EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/17 12:0 a.m.4 views

ASUSTOR Data Master 路径遍历漏洞

ASUSTOR Data Master is an operating system exclusively on the ASUSTOR NAS from China's ASUS, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it a snap to use. A security vulnerability exists in ASUSTOR Data Master that stems from the Printer service allowin...

8.8CVSS8AI score0.00549EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/17 12:0 a.m.4 views

PT-2023-7627 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 through 4.1.0 ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: The issue is related to improper neutralization of special elements used in a command, allowing remote unauthorized...

9CVSS8.8AI score0.01341EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/08/17 12:0 a.m.4 views

ASUSTOR Data Master 路径遍历漏洞

ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An input validation error vulnerability exists in ASUSTOR Data Master, which stems from the Printer service's inability to adequately process user input, and can be exploited by an attacker to navigate to anoth...

8.5CVSS6.8AI score0.00532EPSS
Exploits0References2
Rows per page
Query Builder