CVE-2023-30770

HIGH

ASUSTOR ADM 4.0.0.rib4-4.0.6.reg2, 4.1.0 and below, 4.2.0.RE71 and below - Stack-based Buffer Overflow

Title source: llm
STIX 2.1

Description

A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master (ADM) due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below.

References (1)

Core 1
Core References

Scores

CVSS v3 7.1
EPSS 0.0061
EPSS Percentile 45.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-787
Status published
Products (1)
asustor/adm 4.0.0.rib4 - 4.0.6.reg2
Published Apr 17, 2023
Tracked Since Feb 18, 2026