CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-29189

Incorrect Access Control vulnerability in TerraMaster TOS <= 4.2.06 allows remote authenticated attackers to bypass read-only restriction and obtain full access to any folder within the NAS

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.8%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 5.5

References

Products affected by CVE-2020-29189

Terra-Master » Tos » Version: N/A

cpe:2.3:o:terra-master:tos:-
Terra-Master » Tos » Version: 4.0.02

cpe:2.3:o:terra-master:tos:4.0.02
Terra-Master » Tos » Version: 4.0.09

cpe:2.3:o:terra-master:tos:4.0.09
Terra-Master » Tos » Version: 4.0.17

cpe:2.3:o:terra-master:tos:4.0.17
Terra-Master » Tos » Version: 4.0.18

cpe:2.3:o:terra-master:tos:4.0.18
Terra-Master » Tos » Version: 4.1.18

cpe:2.3:o:terra-master:tos:4.1.18
Terra-Master » Tos » Version: 4.1.21

cpe:2.3:o:terra-master:tos:4.1.21
Terra-Master » Tos » Version: 4.1.24

cpe:2.3:o:terra-master:tos:4.1.24
Terra-Master » Tos » Version: 4.1.27

cpe:2.3:o:terra-master:tos:4.1.27
Terra-Master » Tos » Version: 4.1.28

cpe:2.3:o:terra-master:tos:4.1.28
Terra-Master » Tos » Version: 4.1.29

cpe:2.3:o:terra-master:tos:4.1.29
Terra-Master » Tos » Version: 4.1.30

cpe:2.3:o:terra-master:tos:4.1.30
Terra-Master » Tos » Version: 4.1.31

cpe:2.3:o:terra-master:tos:4.1.31
Terra-Master » Tos » Version: 4.2.04

cpe:2.3:o:terra-master:tos:4.2.04
Terra-Master » Tos » Version: 4.2.05

cpe:2.3:o:terra-master:tos:4.2.05
Terra-Master » Tos » Version: 4.2.06

cpe:2.3:o:terra-master:tos:4.2.06

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-29189

Products

Pricing

Contact Us