Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nas vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2021-20740
Hitachi Virtual File Platform Versions before 5.5.3-09 and Versions before 6.4.3-09, and NEC Storage M Series NAS Gateway Nh4a/Nh8a versions prior to FOS 5.5.3-08(NEC2.5.4a) and Nh4b/Nh8b, Nh4c/Nh8c versions prior to FOS 6.4.3-08(NEC3.4.2) allow remote authenticated malicious use...
Hitachi Virtual File Platform
Nec Nas Gateway Nh4a Firmware
Nec Nas Gateway Nh8a Firmware
Nec Nas Gateway Nh4b Firmware
Nec Nas Gateway Nh8b Firmware
Nec Nas Gateway Nh4c Firmware
Nec Nas Gateway Nh8c Firmware
435
VMScore
CVE-2013-6923
Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote malicious users to inject arbitrary web script or HTML via the (1) fullname parameter to admin/access_control_user_edit.php or (2) workname parame...
Seagate Blackarmor Nas 220 Firmware Sg2000-2000.1331
Seagate Blackarmor Nas 220 St320005lsa10g-rk
Seagate Blackarmor Nas 220 St340005lsa10g-rk
Seagate Blackarmor Nas 220 Stav6000100
1 EDB exploit
685
VMScore
CVE-2013-6922
Multiple cross-site request forgery (CSRF) vulnerabilities in the Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote malicious users to hijack the authentication of administrators for requests that (1) add user accounts via a crafted request to admin/a...
Seagate Blackarmor Nas 220 Firmware Sg2000-2000.1331
Seagate Blackarmor Nas 220 St320005lsa10g-rk
Seagate Blackarmor Nas 220 St340005lsa10g-rk
Seagate Blackarmor Nas 220 Stav6000100
1 EDB exploit
715
VMScore
CVE-2009-4753
Multiple buffer overflows in the FTP server on the Addonics NAS Adapter NASU2FW41 with loader 1.17 allow remote malicious users to cause a denial of service (TCP/IP outage) via long arguments to the (1) XRMD, (2) delete, (3) RNFR, or (4) RNTO command.
Nas Adapter Nasu2fw41 1.17
Nas Adapter Nasu2fw41
1 EDB exploit
525
VMScore
CVE-2009-3200
The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 create an undocumented recovery key and store it in the ENCK variable in flash memory, which allows local users to bypass the passphrase requirement and decrypt the hard drive by reading this ...
Qnap Ts-239 Pro Turbo Nas 3.1.0 0627
Qnap Ts-639 Pro Turbo Nas 2.1.7 0613
Qnap Ts-239 Pro Turbo Nas 3.1.1 0815
Qnap Ts-639 Pro Turbo Nas 3.1.0 0627
Qnap Ts-239 Pro Turbo Nas 2.1.7 0613
Qnap Ts-639 Pro Turbo Nas 3.1.1 0815
436
VMScore
CVE-2009-3279
The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 create a LUKS partition by using the AES-256 cipher in plain CBC mode, which allows local users to obtain sensitive information via a watermark attack.
Qnap Ts-239 Pro Turbo Nas 3.1.0 0627
Qnap Ts-639 Pro Turbo Nas 2.1.7 0613
Qnap Ts-239 Pro Turbo Nas 3.1.1 0815
Qnap Ts-639 Pro Turbo Nas 3.1.0 0627
Qnap Ts-239 Pro Turbo Nas 2.1.7 0613
Qnap Ts-639 Pro Turbo Nas 3.1.1 0815
890
VMScore
CVE-2014-3205
backupmgt/pre_connect_check.php in Seagate BlackArmor NAS contains a hard-coded password of '!~@##$$%FREDESWWSED' for a backdoor user.
Seagate Blackarmor Nas 220 Firmware -
Seagate Blackarmor Nas 110 Firmware -
890
VMScore
CVE-2014-3206
Seagate BlackArmor NAS allows remote malicious users to execute arbitrary code via the session parameter to localhost/backupmgt/localJob.php or the auth_name parameter to localhost/backupmgmt/pre_connect_check.php.
Seagate Blackarmor Nas 220 Firmware -
Seagate Blackarmor Nas 110 Firmware -
890
VMScore
CVE-2013-5667
The Thecus NAS server N8800 with firmware 5.03.01 allows remote malicious users to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter.
Thecus N8800 Nas Server Firmware 5.03.01
Thecus N8800 Nas Server -
694
VMScore
CVE-2013-5668
The ADS/NT Support page on the Thecus NAS server N8800 with firmware 5.03.01 allows remote malicious users to discover the administrator credentials by reading this page's cleartext content.
Thecus N8800 Nas Server Firmware 5.03.01
Thecus N8800 Nas Server -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »