Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

ADM — Vulnerabilities & Security Advisories 25

All 25 CVE vulnerabilities found in ADM, with AI-generated Chinese analysis, references, and POCs.

Vendor: ASUSTOR

CVE IDTitleCVSSSeverityPaused
CVE-2026-6644 A command injection vulnerability was found in the PPTP VPN Clients on the ADM CWE-78 7.2AIHighAI2026-04-20
CVE-2026-6643 A stack-based buffer overflow vulnerability in the VPN Clients on the ADM CWE-121 8.8AIHighAI2026-04-20
CVE-2026-3179 A path traversal vulnerability was found in the FTP Backup on the ADM. CWE-22 6.5 -2026-02-25
CVE-2026-3100 An improper certificate validation vulnerability was found in the FTP Backup on the ADM. CWE-295 6.8 -2026-02-25
CVE-2026-24936 An improper input validation vulnerability was found in ADM while joining a AD Domain. CWE-20 9.8AICriticalAI2026-02-03
CVE-2026-24935 An improper certificate validation vulnerability was found in a third-party NAT traversal module. CWE-295 8.1AIHighAI2026-02-03
CVE-2026-24934 An improper certificate validation vulnerability was found in ADM while querying an external server for the device's WAN IP address. CWE-295 3.7AILowAI2026-02-03
CVE-2026-24933 An improper certificate validation vulnerability was found in ADM while sending HTTPS requests to the server. CWE-295 5.9AIMediumAI2026-02-03
CVE-2026-24932 An improper certificate validation vulnerability was found in ADM while updating the DDNS settings. CWE-295 7.4AIHighAI2026-02-03
CVE-2025-13053 A missing encryption of sensitive data vulnerability was found in the UPS settings of ADM CWE-311 3.7AILowAI2025-12-12
CVE-2025-13052 An improper certificates validation vulnerability was found in the Notification settings of ADM CWE-295 5.3AIMediumAI2025-12-12
CVE-2025-7699 An improper access control vulnerability was found in the EZ Sync Manager of ADM CWE-287 6.5AIMediumAI2025-07-16
CVE-2025-7618 A stored Cross-Site Scripting (XSS) vulnerability exists in the File Explorer and Text Editor of ADM CWE-79 4.8AIMediumAI2025-07-14
CVE-2025-7380 A stored Cross-Site Scripting (XSS) vulnerability exists in the Access Control of ADM CWE-79 5.4AIMediumAI2025-07-14
CVE-2025-7379 A security bypass vulnerability was found in DataSync Center installed on ADM CWE-352 8.1AIHighAI2025-07-09
CVE-2025-7378 An improper input validation vulnerability was found on manipulating configuration of ADM CWE-20 8.1AIHighAI2025-07-09
CVE-2023-4475 An Arbitrary File Movement vulnerability was found on the ADM CWE-552 7.5 High2023-08-22
CVE-2023-3699 An Improper Privilege Management vulnerability was found on the ADM CWE-269 8.7 High2023-08-22
CVE-2023-3698 A Command injection vulnerability was found on Printer service of ADM CWE-22 8.5 High2023-08-17
CVE-2023-3697 A Command injection vulnerability was found on Printer service of ADM CWE-22 8.5 High2023-08-17
CVE-2023-2910 A Command injection vulnerability was found on Printer service of ADM CWE-77 8.8 High2023-08-17
CVE-2023-2909 A Directory traversal vulnerability was found on EZ Sync service of ADM CWE-22 8.5 High2023-05-31
CVE-2023-2509 A Cross-Site Scripting(XSS) vulnerability was found on ADM CWE-79 7.1 High2023-05-17
CVE-2023-30770 A stack-based buffer overflow vulnerability was found in the ADM CWE-787 7.1 High2023-04-17
CVE-2022-37398 A stack-based buffer overflow vulnerability was found on ADM CWE-121 7.1 High2022-08-05

All 25 known CVE vulnerabilities affecting ADM with full Chinese analysis, references, and POCs where available.