Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/12/16 12:26 a.m.10 views

CVE-2025-14693

A vulnerability has been found in Ugreen DH2100+ up to 5.3.0. This affects an unknown function of the component USB Handler. Such manipulation leads to symlink following. The attack can be executed directly on the physical device. The exploit has been disclosed to the public and may be used. It i...

7CVSS6AI score0.00202EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/12/07 11:2 a.m.13 views

CVE-2025-14188

A security vulnerability has been detected in UGREEN DH2100+ up to 5.3.0.251125. This impacts the function handlerfilebackupcreate of the file /v1/file/backup/create of the component nassvr. The manipulation of the argument path leads to command injection. The attack is possible to be carried out...

8.6CVSS6.7AI score0.02512EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/12/07 11:2 a.m.20 views

CVE-2025-14188 UGREEN DH2100+ nas_svr create handler_file_backup_create command injection

A security vulnerability has been detected in UGREEN DH2100+ up to 5.3.0.251125. This impacts the function handlerfilebackupcreate of the file /v1/file/backup/create of the component nassvr. The manipulation of the argument path leads to command injection. The attack is possible to be carried out...

8.6CVSS0.02512EPSS
Exploits0References4
CVE
CVE
added 2025/12/07 11:2 a.m.48 views

CVE-2025-14188

CVE-2025-14188 affects UGREEN DH2100+ (nas_svr) up to version 5.3.0.251125. The vulnerability is in the function handler_file_backup_create at /v1/file/backup/create, where manipulation of the path argument enables remote command injection. Multiple connected sources confirm the issue and state t...

8.6CVSS6.7AI score0.02512EPSS
Exploits0References4
CVE
CVE
added 2025/12/07 8:32 a.m.23 views

CVE-2025-14187

Summary of CVE-2025-14187 (UGREEN DH2100+) Affects the nas_svr component of UGREEN DH2100+ up to 5.3.0.251125. The vulnerability resides in the function handler_file_backup_create for the API endpoint /v1/file/backup/create where manipulation of the path argument can cause a remote buffer overflo...

8.6CVSS7.4AI score0.00585EPSS
Exploits0References4
Rows per page
Query Builder