9 matches found
CVE-2025-14693
A vulnerability has been found in Ugreen DH2100+ up to 5.3.0. This affects an unknown function of the component USB Handler. Such manipulation leads to symlink following. The attack can be executed directly on the physical device. The exploit has been disclosed to the public and may be used. It i...
EUVD-2025-203318
A vulnerability has been found in Ugreen DH2100+ up to 5.3.0. This affects an unknown function of the component USB Handler. Such manipulation leads to symlink following. The attack can be executed directly on the physical device. The exploit has been disclosed to the public and may be used. The...
CVE-2025-14693
A vulnerability has been found in Ugreen DH2100+ up to 5.3.0. This affects an unknown function of the component USB Handler. Such manipulation leads to symlink following. The attack can be executed directly on the physical device. The exploit has been disclosed to the public and may be used. It i...
CVE-2025-14693
CVE-2025-14693 affects the Ugreen DH2100+ device (up to version 5.3.0) via the USB Handler component. The vulnerability in the USB Handler enables symlink following, and exploitation can be carried out on the physical device. The exploit has been disclosed publicly. A remediation is to upgrade th...
CVE-2025-14188
A security vulnerability has been detected in UGREEN DH2100+ up to 5.3.0.251125. This impacts the function handlerfilebackupcreate of the file /v1/file/backup/create of the component nassvr. The manipulation of the argument path leads to command injection. The attack is possible to be carried out...
CVE-2025-14188 UGREEN DH2100+ nas_svr create handler_file_backup_create command injection
A security vulnerability has been detected in UGREEN DH2100+ up to 5.3.0.251125. This impacts the function handlerfilebackupcreate of the file /v1/file/backup/create of the component nassvr. The manipulation of the argument path leads to command injection. The attack is possible to be carried out...
CVE-2025-14188 UGREEN DH2100+ nas_svr create handler_file_backup_create command injection
A security vulnerability has been detected in UGREEN DH2100+ up to 5.3.0.251125. This impacts the function handlerfilebackupcreate of the file /v1/file/backup/create of the component nassvr. The manipulation of the argument path leads to command injection. The attack is possible to be carried out...
Command Execution Vulnerability in DH2100+ NAS of Shenzhen Greenlink Technology Co.
The DH2100+ NAS is a two-drive network attached storage device designed for home and personal users. A command execution vulnerability exists in the Shenzhen Greenlink DH2100+ NAS, which can be exploited by attackers to remotely execute commands...
Binary Vulnerability in DH2100+ of Shenzhen Greenlink Technology Co.
The DH2100+ is a private cloud network storage appliance NAS for home and personal users. A binary vulnerability exists in the Shenzhen Greenlink DH2100+, which can be exploited by attackers to cause a denial of service...