CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4475

An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master (ADM) allows an attacker to exploit the file renaming feature to move files to unintended directories. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.1%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2023-4475

Asustor » Data Master » Version: 4.0.6.ris1

cpe:2.3:o:asustor:data_master:4.0.6.ris1
Asustor » Data Master » Version: 4.1.0.rhu2

cpe:2.3:o:asustor:data_master:4.1.0.rhu2
Asustor » Data Master » Version: 4.1.0.rj72

cpe:2.3:o:asustor:data_master:4.1.0.rj72
Asustor » Data Master » Version: 4.1.0.rjd1

cpe:2.3:o:asustor:data_master:4.1.0.rjd1
Asustor » Data Master » Version: 4.1.0.rkm1

cpe:2.3:o:asustor:data_master:4.1.0.rkm1
Asustor » Data Master » Version: 4.1.0.rlq1

cpe:2.3:o:asustor:data_master:4.1.0.rlq1
Asustor » Data Master » Version: 4.2.0.rc81

cpe:2.3:o:asustor:data_master:4.2.0.rc81
Asustor » Data Master » Version: 4.2.0.re71

cpe:2.3:o:asustor:data_master:4.2.0.re71
Asustor » Data Master » Version: 4.2.1.rge2

cpe:2.3:o:asustor:data_master:4.2.1.rge2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4475

Products

Pricing

Contact Us