Lucene search
K

338 matches found

Positive Technologies
Positive Technologies
added 2023/08/17 12:0 a.m.4 views

PT-2023-7627 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 through 4.1.0 ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: The issue is related to improper neutralization of special elements used in a command, allowing remote unauthorized...

9CVSS8.8AI score0.01341EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/05/31 12:0 a.m.6 views

ASUSTOR Data Master 路径遍历漏洞

ASUSTOR Data Master is an operating system exclusively on the ASUSTOR NAS from China's ASUS, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it easy to get started right away. A security vulnerability exists in ASUSTOR Data Master ADM that stems from an...

10CVSS8.4AI score0.00673EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/05/31 12:0 a.m.4 views

ASUSTOR Data Master 安全漏洞

ASUSTOR Data Master is a proprietary operating system on ASUSTOR NAS from ASUS, China, with a tablet-like graphical interface comparable to a zero learning curve, making it easy to get started. A security vulnerability exists in ASUSTOR Data Master ADM versions 4.0 through 4.2, which stems from a...

8.6CVSS7.4AI score0.00462EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/05/17 12:0 a.m.3 views

ASUSTOR部分产品跨站脚本漏洞

ASUSTOR LooksGood and ASUSTOR SoundGood are both products of China Huayun Technology ASUSTOR.ASUSTOR LooksGood is a media video player application.ASUSTOR SoundGood is a media audio player application. A security vulnerability exists in some of the ASUSTOR products. An attacker could exploit this...

7.1CVSS6.3AI score0.00338EPSS
Exploits0References2
NVD
NVD
added 2023/04/17 7:15 a.m.22 views

CVE-2023-30770

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...

9.8CVSS8AI score0.00614EPSS
Exploits0References1
OSV
OSV
added 2023/04/17 7:15 a.m.8 views

CVE-2023-30770

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...

9.8CVSS7.8AI score0.00614EPSS
Exploits0References1
Prion
Prion
added 2023/04/17 7:15 a.m.15 views

Stack overflow

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...

7.5CVSS9.7AI score0.00614EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/17 6:32 a.m.7 views

CVE-2023-30770 A stack-based buffer overflow vulnerability was found in the ADM

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below...

7.1CVSS9.9AI score0.00614EPSS
Exploits0References1
CVE
CVE
added 2023/04/17 6:32 a.m.42 views

CVE-2023-30770

CVE-2023-30770 affects ASUSTOR Data Master (ADM). The vulnerability is a stack-based buffer overflow caused by a lack of data size validation in ADM, allowing arbitrary code execution. Affected ADM versions include 4.0.6.REG2, 4.1.0 and below, and 4.2.0.RE71 and below. The OpenVAS/PRION/CNNVD/CVE...

9.8CVSS8.8AI score0.00614EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/04/17 12:0 a.m.4 views

ASUSTOR Data Master 缓冲区错误漏洞

ASUSTOR Data Master is ASUS China's proprietary operating system on the ASUSTOR NAS, featuring a tablet-like graphical interface comparable to a zero-learning curve, allowing people to get started as soon as they use it. A security vulnerability exists in ASUSTOR Data Master versions prior to...

9.8CVSS9.2AI score0.00614EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/17 12:0 a.m.6 views

PT-2023-22968 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.REG2, 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.0.RE71 and below Description: A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master ADM due to the lack of data size...

9.8CVSS9.8AI score0.00614EPSS
Exploits0References6
Openbugbounty
Openbugbounty
added 2023/01/08 12:14 p.m.16 views

asustor.com Cross Site Scripting vulnerability OBB-3133727

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/10/06 6:37 a.m.11 views

asustor.com Cross Site Scripting vulnerability OBB-2979537

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Positive Technologies
Positive Technologies
added 2022/08/29 12:0 a.m.9 views

PT-2022-06: Stack-based buffer overflow in ASUSTOR Data Master (ADM)

The vulnerability was identified in ASUSTOR Data Master ADM versions 3.5.9.RUE3 and below, 4.0.5.RVI1 and below, 4.1.0.RJD1 and below. The discovered vulnerability allows remote authenticated users to execute arbitrary code through the WebDAV protocol in susceptible versions of ASUSTOR Data Maste...

8.8CVSS7.7AI score0.00594EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/08/17 12:0 a.m.9 views

The vulnerability of the WebDAV extension of the ASUSTOR Data Master operating system allows a hacker to execute arbitrary code.

The vulnerability of the WebDAV extension of the ASUSTOR Data Master operating system is related to writing beyond the buffer memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

9CVSS8.2AI score0.00594EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2022/08/05 12:0 a.m.5 views

ASUSTOR Data Master 缓冲区错误漏洞

ASUSTOR Data Master is a proprietary operating system for ASUSTOR NAS from Taiwan's ASUSTOR, featuring a tablet-like graphical interface with a zero learning curve, making it easy to get started right out of the box. A security vulnerability exists in ASUSTOR Data Master versions 3.5.9.RUE3 and...

8.8CVSS8.2AI score0.00594EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/07/22 12:0 a.m.4 views

PT-2022-4181 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 3.5.9.RUE3 and below ASUSTOR Data Master ADM versions 4.0.5.RVI1 and below ASUSTOR Data Master ADM versions 4.1.0.RJD1 and below Description: A stack-based buffer overflow vulnerability was found in ASUSTOR Da...

9CVSS8.8AI score0.00594EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2022/07/17 3:46 a.m.15 views

asustor.com Cross Site Scripting vulnerability OBB-2785880

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/05/11 3:14 a.m.8 views

asustor.com Cross Site Scripting vulnerability OBB-2614563

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
The Hacker News
The Hacker News
added 2022/02/24 12:34 p.m.31 views

Warning — Deadbolt Ransomware Targeting ASUSTOR NAS Devices

ASUSTOR network-attached storage NAS devices have become the latest victim of Deadbolt ransomware, less than a month after similar attacks singled out QNAP NAS appliances. In response to the infections, the company has released firmware updates ADM 4.0.4.RQO2 to "fix related security issues." The...

6.8AI score
Exploits0
Rows per page
Query Builder