Lucene search
K

73 matches found

CNNVD
CNNVD
added 2023/08/17 12:0 a.m.4 views

ASUSTOR Data Master 命令注入漏洞

ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. ASUSTOR Data Master suffers from a command injection vulnerability that stems from the Printer service feature failing to properly filter constructed command special characters, commands, etc. The vulnerability...

8.8CVSS8.2AI score0.01341EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/05/31 12:0 a.m.7 views

ASUSTOR Data Master 路径遍历漏洞

ASUSTOR Data Master is an operating system exclusively on the ASUSTOR NAS from China's ASUS, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it easy to get started right away. A security vulnerability exists in ASUSTOR Data Master ADM that stems from an...

10CVSS8.4AI score0.00673EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/05/31 12:0 a.m.4 views

ASUSTOR Data Master 安全漏洞

ASUSTOR Data Master is a proprietary operating system on ASUSTOR NAS from ASUS, China, with a tablet-like graphical interface comparable to a zero learning curve, making it easy to get started. A security vulnerability exists in ASUSTOR Data Master ADM versions 4.0 through 4.2, which stems from a...

8.6CVSS7.4AI score0.00462EPSS
Exploits0References2
NVD
NVD
added 2023/04/17 7:15 a.m.22 views

CVE-2023-30770

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...

9.8CVSS8AI score0.00614EPSS
Exploits0References1
OSV
OSV
added 2023/04/17 7:15 a.m.9 views

CVE-2023-30770

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...

9.8CVSS7.8AI score0.00614EPSS
Exploits0References1
Prion
Prion
added 2023/04/17 7:15 a.m.15 views

Stack overflow

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...

7.5CVSS9.7AI score0.00614EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/04/17 6:32 a.m.43 views

CVE-2023-30770

CVE-2023-30770 affects ASUSTOR Data Master (ADM). The vulnerability is a stack-based buffer overflow caused by a lack of data size validation in ADM, allowing arbitrary code execution. Affected ADM versions include 4.0.6.REG2, 4.1.0 and below, and 4.2.0.RE71 and below. The OpenVAS/PRION/CNNVD/CVE...

9.8CVSS8.8AI score0.00614EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/17 6:32 a.m.9 views

CVE-2023-30770 A stack-based buffer overflow vulnerability was found in the ADM

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...

7.1CVSS9.9AI score0.00614EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/04/17 12:0 a.m.7 views

PT-2023-22968 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.REG2, 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.0.RE71 and below Description: A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size...

9.8CVSS9.8AI score0.00614EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/04/17 12:0 a.m.5 views

ASUSTOR Data Master 缓冲区错误漏洞

ASUSTOR Data Master is ASUS China's proprietary operating system on the ASUSTOR NAS, featuring a tablet-like graphical interface comparable to a zero-learning curve, allowing people to get started as soon as they use it. A security vulnerability exists in ASUSTOR Data Master versions prior to...

9.8CVSS9.2AI score0.00614EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/08/29 12:0 a.m.10 views

PT-2022-06: Stack-based buffer overflow in ASUSTOR Data Master (ADM)

The vulnerability was identified in ASUSTOR Data Master ADM versions 3.5.9.RUE3 and below, 4.0.5.RVI1 and below, 4.1.0.RJD1 and below. The discovered vulnerability allows remote authenticated users to execute arbitrary code through the WebDAV protocol in susceptible versions of ASUSTOR Data Maste...

8.8CVSS7.7AI score0.00606EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/08/05 12:0 a.m.6 views

ASUSTOR Data Master 缓冲区错误漏洞

ASUSTOR Data Master is a proprietary operating system for ASUSTOR NAS from Taiwan's ASUSTOR, featuring a tablet-like graphical interface with a zero learning curve, making it easy to get started right out of the box. A security vulnerability exists in ASUSTOR Data Master versions 3.5.9.RUE3 and...

8.8CVSS8.2AI score0.00606EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/07/22 12:0 a.m.5 views

PT-2022-4181 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 3.5.9.RUE3 and below ASUSTOR Data Master ADM versions 4.0.5.RVI1 and below ASUSTOR Data Master ADM versions 4.1.0.RJD1 and below Description: A stack-based buffer overflow vulnerability was found in ASUSTOR Da...

9CVSS8.8AI score0.00606EPSS
Exploits0References4
CNVD
CNVD
added 2018/09/21 12:0 a.m.1 views

ASUSTOR NAS ADM Login Bypass Vulnerability

ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS with a tablet-like graphical interface comparable to a zero learning curve. A login bypass vulnerability exists in ASUSTOR NAS ADM. The vulnerability exists in the web interface of the ASUSTOR NAS, where /initial/index.cgi is...

6.9AI score
Exploits0References1
CNVD
CNVD
added 2018/08/28 12:0 a.m.5 views

ASUSTOR Data Master Path Traversal Vulnerability

ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS storage devices from ASUSTOR. A path traversal vulnerability exists in the wallpaper.cgi file in ASUSTOR ADM 3.1.5 and earlier versions. A remote attacker could exploit this vulnerability to delete arbitrary files on the file...

8.5CVSS6.7AI score0.01014EPSS
Exploits1References1
CNVD
CNVD
added 2018/08/28 12:0 a.m.2 views

ASUSTOR Data Master File Disclosure Vulnerability

ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS storage devices from ASUSTOR. A file disclosure vulnerability exists in ASUSTOR ADM 3.1.5 and earlier versions. A remote attacker can exploit this vulnerability by sending a request to the downloadwallpaper.cgi file and...

6.5CVSS6.6AI score0.00907EPSS
Exploits1References1
CNVD
CNVD
added 2018/08/28 12:0 a.m.3 views

ASUSTOR Data Master Account Enumeration Vulnerability

ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS storage devices from ASUSTOR. A security vulnerability exists in ASUSTOR ADM 3.1.5 and earlier versions. A remote attacker can exploit this vulnerability to enumerate all accounts on the device with the help of the user.cgi...

4.3CVSS7.5AI score0.00729EPSS
Exploits1References1
CNVD
CNVD
added 2018/08/28 12:0 a.m.6 views

ASUSTOR Data Master Path Traversal Vulnerability (CNVD-2018-17897)

ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS storage devices from ASUSTOR. A path traversal vulnerability exists in ASUSTOR ADM 3.1.5 and prior versions. A remote attacker can exploit this vulnerability to upload files to an arbitrary location and potentially execute co...

7.5CVSS7.9AI score0.01511EPSS
Exploits1References1
OSV
OSV
added 2018/08/27 2:29 p.m.7 views

CVE-2018-15696

ASUSTOR Data Master 3.1.5 and below allows authenticated remote non-administrative users to enumerate all user accounts via user.cgi...

4.3CVSS5.8AI score0.00729EPSS
Exploits1References1
OSV
OSV
added 2018/08/27 2:29 p.m.3 views

CVE-2018-15694

ASUSTOR Data Master 3.1.5 and below allows authenticated remote non-administrative users to upload files to arbitrary locations due to a path traversal vulnerability. This could lead to code execution if the "Web Server" feature is enabled...

7.5CVSS6.3AI score0.01511EPSS
Exploits1References1
Rows per page
Query Builder