Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/12/08 5:14 a.m.4 views

CVE-2025-14184

A vulnerability was determined in SGAI Space1 NAS N1211DS up to 1.0.915. Impacted is the function RENAMEFILE/OPERATEFILE/NGNIXUPLOAD of the file /cgi-bin/JSONAPI of the component gsaiagent. This manipulation causes command injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS6.8AI score0.01976EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/07 4:32 a.m.16 views

CVE-2025-14184 SGAI Space1 NAS N1211DS gsaiagent JSONAPI NGNIX_UPLOAD command injection

A vulnerability was determined in SGAI Space1 NAS N1211DS up to 1.0.915. Impacted is the function RENAMEFILE/OPERATEFILE/NGNIXUPLOAD of the file /cgi-bin/JSONAPI of the component gsaiagent. This manipulation causes command injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS0.01976EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/12/07 4:32 a.m.2 views

CVE-2025-14184 SGAI Space1 NAS N1211DS gsaiagent JSONAPI NGNIX_UPLOAD command injection

A vulnerability was determined in SGAI Space1 NAS N1211DS up to 1.0.915. Impacted is the function RENAMEFILE/OPERATEFILE/NGNIXUPLOAD of the file /cgi-bin/JSONAPI of the component gsaiagent. This manipulation causes command injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS6.5AI score0.01976EPSS
Exploits0References7
CVE
CVE
added 2025/12/07 4:32 a.m.18 views

CVE-2025-14184

CVE-2025-14184 affects SGAI Space1 NAS N1211DS (firmware up to 1.0.915). The gsaiagent component exposes a vulnerability in the /cgi-bin/JSONAPI handling of RENAME_FILE/OPERATE_FILE/NGNIX_UPLOAD that enables command injection. The issue can be triggered remotely; public disclosure of the exploit ...

6.5CVSS6.5AI score0.01976EPSS
Exploits0References7
EUVD
EUVD
added 2025/12/07 3:30 a.m.6 views

EUVD-2025-201592

A vulnerability was found in SGAI Space1 NAS N1211DS up to 1.0.915. This issue affects the function GETFACTORYINFO/GETUSERINFO of the file /cgi-bin/JSONAPI of the component gsaiagent. The manipulation results in unprotected storage of credentials. The attack can be launched remotely. The exploit...

5.3CVSS4.6AI score0.00227EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/12/07 3:2 a.m.4 views

CVE-2025-14183 SGAI Space1 NAS N1211DS gsaiagent JSONAPI GET_USER_INFO credentials storage

A vulnerability was found in SGAI Space1 NAS N1211DS up to 1.0.915. This issue affects the function GETFACTORYINFO/GETUSERINFO of the file /cgi-bin/JSONAPI of the component gsaiagent. The manipulation results in unprotected storage of credentials. The attack can be launched remotely. The exploit...

5.3CVSS6.4AI score0.00227EPSS
Exploits0References6
CVE
CVE
added 2025/12/07 3:2 a.m.16 views

CVE-2025-14183

SGAI Space1 NAS N1211DS (≤1.0.915) is affected by CVE-2025-14183 in the gsaiagent component, specifically GET_FACTORY_INFO/GET_USER_INFO in /cgi-bin/JSONAPI. The issue enables unprotected storage of credentials and is exploitable remotely; public exploit material exists. Red Hat/EUVD/NVD entries ...

5.3CVSS6.4AI score0.00227EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/07 12:0 a.m.5 views

SGAI Space1 安全漏洞

SGAI Space1 is an all-in-one NAS and router appliance from China's Speed Gap SGAI. A security vulnerability exists in SGAI Space1 version 1.0.915 and earlier, which stems from an improper credential storage in component gsaiagent in NAS N1211DS, which could lead to credential disclosure...

5.3CVSS4.8AI score0.00227EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/07 12:0 a.m.6 views

PT-2025-49395

Name of the Vulnerable Software and Affected Versions SGAI Space1 NAS N1211DS versions through 1.0.915 Description A command injection issue exists in the gsaiagent component. The RENAME FILE/OPERATE FILE/NGNIX UPLOAD function within the /cgi-bin/JSONAPI file is susceptible to manipulation, leadi...

6.5CVSS6.6AI score0.01976EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/12/07 12:0 a.m.5 views

PT-2025-49394

A vulnerability was found in SGAI Space1 NAS N1211DS up to 1.0.915. This issue affects the function GET FACTORY INFO/GET USER INFO of the file /cgi-bin/JSONAPI of the component gsaiagent. The manipulation results in unprotected storage of credentials. The attack can be launched remotely. The...

5.3CVSS6.7AI score0.00227EPSS
Exploits0References7
Rows per page
Query Builder