CVE-2026-6643

CRITICAL

Asustor Inc. Adm < 4.3.3.RR42 - Buffer Overflow

Title source: rule

Description

A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stems from the use of unbounded sscanf() and passing user-controlled data directly to printf(). Due to the lack of PIE and Stack Canary protections, an authenticated remote attacker can exploit these to execute arbitrary code as the web server user. Affected products and versions include: from ADM 4.1.0 through ADM 4.3.3.RR42 as well as from ADM 5.0.0 through ADM 5.1.2.REO1.

Exploits (1)

github WORKING POC

by mlgzackfly · pythonpoc

https://github.com/mlgzackfly/CVE-2026-6643

View Code ZIP pw:eip

References (1)

[Vendor Advisory] https://www.asustor.com/security/security_advisory_detail?id=54

Scores

CVSS v3 9.9

EPSS 0.0013

EPSS Percentile 32.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-121

Status published

Products (3)

asustor/data_master 4.1.0.rhu2 - 4.3.3.RR42

ASUSTOR Inc./ADM 4.1.0 - 4.3.3.RR42

ASUSTOR Inc./ADM 5.0.0 - 5.1.2.REO1

Published Apr 20, 2026

Tracked Since Apr 20, 2026