73 matches found
ASUSTOR Data Master 命令注入漏洞
ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. ASUSTOR Data Master suffers from a command injection vulnerability that stems from the Printer service feature failing to properly filter constructed command special characters, commands, etc. The vulnerability...
ASUSTOR Data Master 路径遍历漏洞
ASUSTOR Data Master is an operating system exclusively on the ASUSTOR NAS from China's ASUS, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it easy to get started right away. A security vulnerability exists in ASUSTOR Data Master ADM that stems from an...
ASUSTOR Data Master 安全漏洞
ASUSTOR Data Master is a proprietary operating system on ASUSTOR NAS from ASUS, China, with a tablet-like graphical interface comparable to a zero learning curve, making it easy to get started. A security vulnerability exists in ASUSTOR Data Master ADM versions 4.0 through 4.2, which stems from a...
CVE-2023-30770
A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...
CVE-2023-30770
A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...
Stack overflow
A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...
CVE-2023-30770
CVE-2023-30770 affects ASUSTOR Data Master (ADM). The vulnerability is a stack-based buffer overflow caused by a lack of data size validation in ADM, allowing arbitrary code execution. Affected ADM versions include 4.0.6.REG2, 4.1.0 and below, and 4.2.0.RE71 and below. The OpenVAS/PRION/CNNVD/CVE...
CVE-2023-30770 A stack-based buffer overflow vulnerability was found in the ADM
A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...
PT-2023-22968 · Asustor · Asustor Data Master
Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.REG2, 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.0.RE71 and below Description: A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size...
ASUSTOR Data Master 缓冲区错误漏洞
ASUSTOR Data Master is ASUS China's proprietary operating system on the ASUSTOR NAS, featuring a tablet-like graphical interface comparable to a zero-learning curve, allowing people to get started as soon as they use it. A security vulnerability exists in ASUSTOR Data Master versions prior to...
PT-2022-06: Stack-based buffer overflow in ASUSTOR Data Master (ADM)
The vulnerability was identified in ASUSTOR Data Master ADM versions 3.5.9.RUE3 and below, 4.0.5.RVI1 and below, 4.1.0.RJD1 and below. The discovered vulnerability allows remote authenticated users to execute arbitrary code through the WebDAV protocol in susceptible versions of ASUSTOR Data Maste...
ASUSTOR Data Master 缓冲区错误漏洞
ASUSTOR Data Master is a proprietary operating system for ASUSTOR NAS from Taiwan's ASUSTOR, featuring a tablet-like graphical interface with a zero learning curve, making it easy to get started right out of the box. A security vulnerability exists in ASUSTOR Data Master versions 3.5.9.RUE3 and...
PT-2022-4181 · Asustor · Asustor Data Master
Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 3.5.9.RUE3 and below ASUSTOR Data Master ADM versions 4.0.5.RVI1 and below ASUSTOR Data Master ADM versions 4.1.0.RJD1 and below Description: A stack-based buffer overflow vulnerability was found in ASUSTOR Da...
ASUSTOR NAS ADM Login Bypass Vulnerability
ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS with a tablet-like graphical interface comparable to a zero learning curve. A login bypass vulnerability exists in ASUSTOR NAS ADM. The vulnerability exists in the web interface of the ASUSTOR NAS, where /initial/index.cgi is...
ASUSTOR Data Master Path Traversal Vulnerability
ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS storage devices from ASUSTOR. A path traversal vulnerability exists in the wallpaper.cgi file in ASUSTOR ADM 3.1.5 and earlier versions. A remote attacker could exploit this vulnerability to delete arbitrary files on the file...
ASUSTOR Data Master File Disclosure Vulnerability
ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS storage devices from ASUSTOR. A file disclosure vulnerability exists in ASUSTOR ADM 3.1.5 and earlier versions. A remote attacker can exploit this vulnerability by sending a request to the downloadwallpaper.cgi file and...
ASUSTOR Data Master Account Enumeration Vulnerability
ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS storage devices from ASUSTOR. A security vulnerability exists in ASUSTOR ADM 3.1.5 and earlier versions. A remote attacker can exploit this vulnerability to enumerate all accounts on the device with the help of the user.cgi...
ASUSTOR Data Master Path Traversal Vulnerability (CNVD-2018-17897)
ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS storage devices from ASUSTOR. A path traversal vulnerability exists in ASUSTOR ADM 3.1.5 and prior versions. A remote attacker can exploit this vulnerability to upload files to an arbitrary location and potentially execute co...
CVE-2018-15696
ASUSTOR Data Master 3.1.5 and below allows authenticated remote non-administrative users to enumerate all user accounts via user.cgi...
CVE-2018-15694
ASUSTOR Data Master 3.1.5 and below allows authenticated remote non-administrative users to upload files to arbitrary locations due to a path traversal vulnerability. This could lead to code execution if the "Web Server" feature is enabled...