Lucene search
K

338 matches found

CVE
CVE
added 2023/08/22 8:57 a.m.39 views

CVE-2023-3699

CVE-2023-3699 affects ASUSTOR Data Master (ADM) on ASUSTOR NAS. The issue is an improper privilege management that allows an unprivileged local user to modify the storage devices configuration. Affected ADM versions: 4.0.6.RIS1 and below; 4.1.0 and below; 4.2.2.RI61 and below. Impact is the abili...

8.7CVSS5.8AI score0.00145EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/22 8:57 a.m.11 views

CVE-2023-3699 An Improper Privilege Management vulnerability was found on the ADM

An Improper Privilege Management vulnerability was found in ASUSTOR Data Master ADM allows an unprivileged local users to modify the storage devices configuration. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...

8.7CVSS6.6AI score0.00145EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/22 8:57 a.m.23 views

CVE-2023-3699 An Improper Privilege Management vulnerability was found on the ADM

An Improper Privilege Management vulnerability was found in ASUSTOR Data Master ADM allows an unprivileged local users to modify the storage devices configuration. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below...

8.7CVSS8.5AI score0.00145EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.6 views

ASUSTOR Data Master 安全漏洞

ASUSTOR Data Master is a proprietary operating system for ASUSTOR NAS from ASUS in China, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it easy to get started right away. A security vulnerability exists in ASUSTOR Data Master, which stems from the presenc...

7.5CVSS5.9AI score0.00159EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.6 views

ASUSTOR Data Master 安全漏洞

ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An authorization issue vulnerability exists in ASUSTOR Data Master, which arises from improper privilege management and can be exploited by an unprivileged local attacker to modify the storage device...

8.7CVSS6.6AI score0.00145EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/22 12:0 a.m.3 views

PT-2023-7628 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 and below ASUSTOR Data Master ADM versions 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: The issue is related to improper privilege management in ASUSTOR Data...

8.7CVSS5.9AI score0.00145EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/08/22 12:0 a.m.5 views

PT-2023-7490 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 and below ASUSTOR Data Master ADM versions 4.1.0 and below ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: An Arbitrary File Movement issue was found in ASUSTOR Data Master ADM,...

7.5CVSS5.5AI score0.00159EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2023/08/21 12:0 a.m.14 views

ASUSTOR ADM Buffer Overflow Vulnerability (AS-2023-003)

ASUSTOR ADM is prone to a stack-based buffer overflow vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:asustor:adm"...

9.8CVSS9.6AI score0.00614EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/08/21 12:0 a.m.17 views

ASUSTOR ADM Multiple Vulnerabilities (AS-2023-009, AS-2023-010, AS-2023-011, AS-2023-012)

ASUSTOR ADM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:asustor:adm"; if description...

8.8CVSS7AI score0.01341EPSS
Exploits0References4
CNVD
CNVD
added 2023/08/19 12:0 a.m.20 views

ASUSTOR Data Master Command Injection Vulnerability

ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. ASUSTOR Data Master suffers from a command injection vulnerability that stems from the Printer service feature failing to properly filter constructed command special characters, commands, etc. The vulnerability...

8.8CVSS8.3AI score0.01341EPSS
Exploits0References1
CNVD
CNVD
added 2023/08/19 12:0 a.m.15 views

ASUSTOR Data Master Input Validation Error Vulnerability (CNVD-2023-64212)

ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An input validation error vulnerability exists in ASUSTOR Data Master, which stems from the Printer service's inability to adequately process user input, and can be exploited by an attacker to navigate to anoth...

8.5CVSS6.7AI score0.00532EPSS
Exploits0References1
NVD
NVD
added 2023/08/17 10:15 a.m.28 views

CVE-2023-2910

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

8.8CVSS9.1AI score0.01341EPSS
Exploits0References1
OSV
OSV
added 2023/08/17 10:15 a.m.5 views

CVE-2023-2910

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

8.8CVSS6AI score0.01341EPSS
Exploits0References1
Prion
Prion
added 2023/08/17 10:15 a.m.24 views

Command injection

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

6.5CVSS8.9AI score0.01341EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/17 9:25 a.m.46 views

CVE-2023-2910

CVE-2023-2910 affects ASUSTOR Data Master (ADM) Printer service. The root cause is improper neutralization of special elements used in a command (command injection) which enables remote, unauthenticated abuse to execute arbitrary commands. Affected ADM versions include 4.0.6.RIS1, 4.1.0 and below...

8.8CVSS9.1AI score0.01341EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/17 9:25 a.m.28 views

CVE-2023-2910 A Command injection vulnerability was found on Printer service of ADM

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

8.8CVSS9.2AI score0.01341EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/17 9:25 a.m.13 views

CVE-2023-2910 A Command injection vulnerability was found on Printer service of ADM

Improper neutralization of special elements used in a command 'Command Injection' vulnerability in Printer service functionality in ASUSTOR Data Master ADM allows remote unauthorized users to execute arbitrary commands via unspecified vectors. Affected products and versions include: ADM 4.0.6.RIS...

8.8CVSS7.9AI score0.01341EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/17 12:0 a.m.4 views

ASUSTOR Data Master 路径遍历漏洞

ASUSTOR Data Master is an operating system exclusively on the ASUSTOR NAS from China's ASUS, featuring a tablet-like graphical interface comparable to a zero-learning curve, making it a snap to use. A security vulnerability exists in ASUSTOR Data Master that stems from the Printer service allowin...

8.8CVSS8AI score0.00549EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/17 12:0 a.m.3 views

PT-2023-7627 · Asustor · Asustor Data Master

Name of the Vulnerable Software and Affected Versions: ASUSTOR Data Master ADM versions 4.0.6.RIS1 through 4.1.0 ASUSTOR Data Master ADM versions 4.2.2.RI61 and below Description: The issue is related to improper neutralization of special elements used in a command, allowing remote unauthorized...

9CVSS8.8AI score0.01341EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/08/17 12:0 a.m.4 views

ASUSTOR Data Master 路径遍历漏洞

ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. An input validation error vulnerability exists in ASUSTOR Data Master, which stems from the Printer service's inability to adequately process user input, and can be exploited by an attacker to navigate to anoth...

8.5CVSS6.8AI score0.00532EPSS
Exploits0References2
Rows per page
Query Builder