← volver
CVE-2022-37398

A stack-based buffer overflow vulnerability was found on ADM

CVSS 7.1 HIGHEPSS 0.6%CWE-121
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.1EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
05 ago 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A stack-based buffer overflow vulnerability was found inside ADM when using WebDAV due to the lack of data size validation. An attacker can exploit this vulnerability to run arbitrary code. Affected ADM versions include: 3.5.9.RUE3 and below, 4.0.5.RVI1 and below as well as 4.1.0.RJD1 and below.
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H
Productos afectados
ASUSTOR · ADM

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.asustor.com/security/security_advisory_detail?id=12