Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/05/22 4:4 p.m.10 views

CVE-2020-15568

TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method invocation vulnerability in include/exportUser.php, in which an attacker can trigger a call to the exec method with for example OS commands in the opt parameter...

10CVSS9.6AI score0.28495EPSS
Exploits1
cnvd
cnvd
added 2021/02/01 12:0 a.m.10 views

TerraMaster TOS Dynamic Class Method Invocation Vulnerability

TerraMaster TOS is a Linux-based operating system developed for TerraMaster Cloud Storage NAS servers. A dynamic class method call vulnerability exists in include/exportUser.php in TerraMaster TOS versions prior to 4.1.29. The vulnerability stems from invalid parameter checking. An attacker can...

10CVSS6.9AI score0.28495EPSS
Exploits1References1
prion
prion
added 2021/01/30 5:15 a.m.29 views

Code injection

TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method invocation vulnerability in include/exportUser.php, in which an attacker can trigger a call to the exec method with for example OS commands in the opt parameter...

10CVSS9.6AI score0.28495EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2021/01/30 4:59 a.m.36 views

CVE-2020-15568

TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method invocation vulnerability in include/exportUser.php, in which an attacker can trigger a call to the exec method with for example OS commands in the opt parameter...

9.7AI score0.28495EPSS
Exploits1References2
cnnvd
cnnvd
added 2021/01/30 12:0 a.m.9 views

Terramaster TOS 操作系统命令注入漏洞

TerraMaster TOS is a Linux-based operating system developed for TerraMaster Cloud Storage NAS servers. A dynamic class method call vulnerability exists in include/exportUser.php in TerraMaster TOS versions prior to 4.1.29. The vulnerability stems from invalid parameter checking. An attacker can...

10CVSS7.5AI score0.28495EPSS
Exploits1References3
attackerkb
attackerkb
added 2021/01/30 12:0 a.m.60 views

CVE-2020-15568

TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method invocation vulnerability in include/exportUser.php, in which an attacker can trigger a call to the exec method with for example OS commands in the opt parameter. Recen...

10CVSS9.6AI score0.28495EPSS
In wildExploits1References3
Rows per page
Query Builder