Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An unrestricted file upload vulnerability in upload.cgi in ASUSTOR AS6202T ADM 3.1.0.RFQ3 allows attackers to upload supplied data via the POST parameter filename. This can be used to place attacker controlled code on the file system that can then be executed. Further, the filename parameter is vulnerable to path traversal and allows the attacker to place the file anywhere on the system.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ASUSTOR AS6202T ADM 安全漏洞
Vulnerability Description
ASUSTOR AS6202T ADM是华芸科技(ASUSTOR)公司的一套专用于ASUSTOR NAS存储设备的操作系统。 ASUSTOR AS6202T ADM 3.1.0.RFQ3版本中的upload.cgi文件存在安全漏洞。攻击者可借助‘filename’POST参数利用该漏洞上传数据,并向文件系统的任意地址上传文件。
CVSS Information
N/A
Vulnerability Type
N/A