Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Ugreen DH2100+ USB symlink
Vulnerability Description
A vulnerability has been found in Ugreen DH2100+ up to 5.3.0. This affects an unknown function of the component USB Handler. Such manipulation leads to symlink following. The attack can be executed directly on the physical device. The exploit has been disclosed to the public and may be used. It is suggested to upgrade the affected component.
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
CWE-61
Vulnerability Title
UGREEN DH2100+ 安全漏洞
Vulnerability Description
UGREEN DH2100+是中国绿联(UGREEN)公司的一款私有云存储设备。 UGREEN DH2100+ 5.3.0及之前版本存在安全漏洞,该漏洞源于USB Handler组件存在符号链接跟随问题。
CVSS Information
N/A
Vulnerability Type
N/A