CVE-2023-30770
HIGHASUSTOR ADM 4.0.0.rib4-4.0.6.reg2, 4.1.0 and below, 4.2.0.RE71 and below - Stack-based Buffer Overflow
Title source: llmDescription
A stack-based buffer overflow vulnerability was found in the ASUSTOR Data Master (ADM) due to the lack of data size validation. An attacker can exploit this vulnerability to execute arbitrary code. Affected ADM versions include: 4.0.6.REG2, 4.1.0 and below as well as 4.2.0.RE71 and below.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://www.asustor.com/security/security_advisory_detail?id=21
Scores
CVSS v3
7.1
EPSS
0.0061
EPSS Percentile
45.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-787
Status
published
Products (1)
asustor/adm
4.0.0.rib4 - 4.0.6.reg2
Published
Apr 17, 2023
Tracked Since
Feb 18, 2026