Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nas vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1544
Integer overflow in the ProcAuWriteElement function in server/dia/audispatch.c in Network Audio System (NAS) prior to 1.8a SVN 237 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large max_samples value.
Radscan Network Audio System 1.8a
NA
CVE-2007-1547
The ReadRequestFromClient function in server/os/io.c in Network Audio System (NAS) prior to 1.8a SVN 237 allows remote malicious users to cause a denial of service (crash) via multiple simultaneous connections, which triggers a NULL pointer dereference.
Radscan Network Audio System 1.8a
9.8
CVSSv3
CVE-2021-43527
NSS (Network Security Services) versions before 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \#7, or PKCS \#12 are likely to be impacted. A...
Mozilla Nss Esr
Mozilla Nss
Netapp Cloud Backup -
Netapp E-series Santricity Os Controller
Oracle Communications Cloud Native Core Network Slice Selection Function 1.8.0
Oracle Communications Cloud Native Core Network Repository Function 1.15.0
Oracle Communications Cloud Native Core Network Repository Function 1.15.1
Oracle Communications Cloud Native Core Binding Support Function 1.11.0
Oracle Communications Policy Management 12.6.0.0.0
Starwindsoftware Starwind Virtual San V8r13
Starwindsoftware Starwind San \\& Nas V8r13
NA
CVE-2013-4256
Multiple stack-based and heap-based buffer overflows in Network Audio System (NAS) 1.9.3 allow local users to cause a denial of service (crash) or possibly execute arbitrary code via the (1) display command argument to the ProcessCommandLine function in server/os/utils.c; (2) Res...
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
Radscan Network Audio System 1.9.3
NA
CVE-2013-4257
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-4256. Reason: This issue was MERGED into CVE-2013-4256 because it is the same type of vulnerability. Notes: All CVE users should reference CVE-2013-4256 instead of this candidate. All references and descripti...
9.8
CVSSv3
CVE-2013-6924
Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote malicious users to execute arbitrary commands via shell metacharacters in the ip parameter to backupmgt/getAlias.php.
Seagate Blackarmor Nas 220 Firmware Sg2000-2000.1331
2 EDB exploits
9.8
CVSSv3
CVE-2014-8687
Seagate Business NAS devices with firmware prior to 2015.00322 allow remote malicious users to execute arbitrary code with root privileges by leveraging use of a static encryption key to create session tokens.
Seagate Business Nas Firmware 2014.00319
2 EDB exploits
1 Github repository
2 Articles
NA
CVE-2013-4258
Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System (NAS) 1.9.3 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to sys...
Radscan Network Audio System 1.9.3
9.8
CVSSv3
CVE-2014-8686
CodeIgniter prior to 2.2.0 makes it easier for malicious users to decode session cookies by leveraging fallback to a custom XOR-based encryption scheme when the Mcrypt extension for PHP is not available.
Codeigniter Codeigniter
1 EDB exploit
2 Articles
NA
CVE-2013-6922
Multiple cross-site request forgery (CSRF) vulnerabilities in the Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote malicious users to hijack the authentication of administrators for requests that (1) add user accounts via a crafted request to admin/a...
Seagate Blackarmor Nas 220 Firmware Sg2000-2000.1331
Seagate Blackarmor Nas 220 St320005lsa10g-rk
Seagate Blackarmor Nas 220 St340005lsa10g-rk
Seagate Blackarmor Nas 220 Stav6000100
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »