CNNVD-202507-1280 Information
Jul 09, 2025
cve
CNNVD ID
CNNVD-202507-1280
Related CVE
- CNNVD Published: 2025-07-09
Description (Chinese)
ASUSTOR DataSync Center是中国台北华芸科技(ASUSTOR)公司的一个云端存储服务管理程序。 ASUSTOR DataSync Center 1.1.0.r207之前版本和1.2.0.r206之前版本存在安全漏洞,该漏洞源于容易受到反向标签劫持攻击,可能导致凭据窃取。
Description (English)
SUSTOR DataSync Center is a cloud-based storage service management programme for Taipei China ’ s company ASUSTOR. Prior to ASYCUDA DataSync Center 1.1.0.r207 and before 1.2.0.r206, there was a security loophole, which stemmed from the vulnerability of the reverse label hijacking attack and could lead to the theft of evidence.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
华芸科技
Published
2025-07-09
Last Modified
2026-02-24
References
https://www.asustor.com/security/security_advisory_detail?id=42
Patch
https://www.asustor.com/zh-cn/news/snews
Share on: