A stack-based buffer overflow vulnerability was found in the ADM
CVE-2023-30770

7.1HIGH

Key Information:

Vendor: Asustor
Status: Adm
Vendor: CVE Published:; 17 April 2023

What is CVE-2023-30770?

A stack-based buffer overflow vulnerability exists in ASUSTOR Data Master (ADM) due to insufficient validation of data size. This flaw allows attackers to exploit the vulnerability and execute arbitrary code on affected systems, potentially compromising security. Users of ADM versions 4.0.6.REG2, 4.1.0 and earlier, as well as 4.2.0.RE71 and earlier, should be particularly vigilant and consider applying security patches as recommended by the vendor.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

ADM Linux 4.0 <= 4.0.6.REG2

ADM Linux 4.1 <= 4.1.0.RLQ1

ADM Linux 4.2 <= 4.2.0.RE71

References

https://www.asustor.com/security/security_advisory_detail...

vendor-advisory

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 17, 2023
Vulnerability Reserved
Apr 14, 2023

Credit

LinYu, Li from Institute of Information Engineering, Chinese Academy of Sciences

JSON

Asustor