73 matches found
CVE-2023-4475 An Arbitrary File Movement vulnerability was found on the ADM
An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master ADM allows an attacker to exploit the file renaming feature to move files to unintended directories. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...
CVE-2023-4475
ASUSTOR Data Master (ADM) is affected by an Arbitrary File Movement vulnerability via the file renaming feature. Affected: ADM 4.0.6.RIS1 and below, ADM 4.1.0 and below, ADM 4.2.2.RI61 and below. Root cause: exploitation of the file renaming mechanism to move files into unintended directories. Im...
CVE-2023-4475 An Arbitrary File Movement vulnerability was found on the ADM
An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master ADM allows an attacker to exploit the file renaming feature to move files to unintended directories. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...
CVE-2023-3699
CVE-2023-3699 affects ASUSTOR Data Master (ADM) on ASUSTOR NAS. The issue is an improper privilege management that allows an unprivileged local user to modify the storage devices configuration. Affected ADM versions: 4.0.6.RIS1 and below; 4.1.0 and below; 4.2.2.RI61 and below. Impact is the abili...
CVE-2023-3699 An Improper Privilege Management vulnerability was found on the ADM
An Improper Privilege Management vulnerability was found in ASUSTOR Data Master ADM allows an unprivileged local users to modify the storage devices configuration. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...
CVE-2023-3699 An Improper Privilege Management vulnerability was found on the ADM
An Improper Privilege Management vulnerability was found in ASUSTOR Data Master ADM allows an unprivileged local users to modify the storage devices configuration. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...
ASUSTOR Data Master 安全漏洞
ASUSTOR Data Master is a proprietary operating system for ASUSTOR NAS from ASUS in China, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it easy to get started right away. A security vulnerability exists in ASUSTOR Data Master, which stems from the presenc...
PT-2023-7628 · Asustor · Asustor Data Master
Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 and below ASUSTOR Data Master ADM versions 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: The issue is related to improper privilege management in ASUSTOR Data...
ASUSTOR Data Master 安全漏洞
ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An authorization issue vulnerability exists in ASUSTOR Data Master, which arises from improper privilege management and can be exploited by an unprivileged local attacker to modify the storage device...
PT-2023-7490 · Asustor · Asustor Data Master
Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 and below ASUSTOR Data Master ADM versions 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: An Arbitrary File Movement issue was found in ASUSTOR Data Master ADM,...
ASUSTOR Data Master Input Validation Error Vulnerability (CNVD-2023-64212)
ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An input validation error vulnerability exists in ASUSTOR Data Master, which stems from the Printer service's inability to adequately process user input, and can be exploited by an attacker to navigate to anoth...
CVE-2023-2910
Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...
CVE-2023-2910
Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...
Command injection
Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...
CVE-2023-2910 A Command injection vulnerability was found on Printer service of ADM
Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...
CVE-2023-2910
CVE-2023-2910 affects ASUSTOR Data Master (ADM) Printer service. The root cause is improper neutralization of special elements used in a command (command injection) which enables remote, unauthenticated abuse to execute arbitrary commands. Affected ADM versions include 4.0.6.RIS1, 4.1.0 and below...
CVE-2023-2910 A Command injection vulnerability was found on Printer service of ADM
Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...
ASUSTOR Data Master 路径遍历漏洞
ASUSTOR Data Master is an operating system exclusively on the ASUSTOR NAS from China's ASUS, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it a snap to use. A security vulnerability exists in ASUSTOR Data Master that stems from the Printer service allowin...
PT-2023-7627 · Asustor · Asustor Data Master
Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 through 4.1.0 ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: The issue is related to improper neutralization of special elements used in a command, allowing remote unauthorized...
ASUSTOR Data Master 路径遍历漏洞
ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An input validation error vulnerability exists in ASUSTOR Data Master, which stems from the Printer service's inability to adequately process user input, and can be exploited by an attacker to navigate to anoth...