9 matches found
CVE-2025-69429
The ORICO NAS CD3510 version V1.9.12 and below contains an Incorrect Symlink Follow vulnerability that could be exploited by attackers to leak or tamper with the internal file system. Attackers can format a USB drive to ext4, create a symbolic link to its root directory, insert the drive into the...
CVE-2025-14220
A security vulnerability has been detected in ORICO CD3510 1.9.12. This affects an unknown function of the component File Upload. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early...
CVE-2025-14220
A security vulnerability has been detected in ORICO CD3510 1.9.12. This affects an unknown function of the component File Upload. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early...
CVE-2025-14220
CVE-2025-14220 affects ORICO CD3510 1.9.12, with vulnerability in the File Upload function allowing path traversal. The issue is exploitable remotely and publicly disclosed; vendor did not respond to disclosure. No further technical details (affected subcomponents, exact file paths, or patch info...
CVE-2025-14220 ORICO CD3510 File Upload path traversal
A security vulnerability has been detected in ORICO CD3510 1.9.12. This affects an unknown function of the component File Upload. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early...
CVE-2025-14220 ORICO CD3510 File Upload path traversal
A security vulnerability has been detected in ORICO CD3510 1.9.12. This affects an unknown function of the component File Upload. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early...
EUVD-2025-201669
A security vulnerability has been detected in ORICO CD3510 1.9.12. This affects an unknown function of the component File Upload. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early...
ORICO CD3510 路径遍历漏洞
The ORICO CD3510 is a networkable hard disk enclosure from ORICO. A path traversal vulnerability exists in the ORICO CD3510 version 1.9.12, which stems from a path traversal vulnerability in the file upload component...
PT-2025-49510
A security vulnerability has been detected in ORICO CD3510 1.9.12. This affects an unknown function of the component File Upload. The manipulation leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early...