CNNVD-202507-1835 Information

CNNVD ID

CNNVD-202507-1835

Related CVE

CVE-2025-7380

• CNNVD Published: 2025-07-14

Description (Chinese)

ASUSTOR ADM是中国华硕（ASUS）公司的一种所有 ASUSTOR NAS 设备的专用操作系统。 Asustor ADM 4.1.0至4.3.3.RH61版本和5.0.0.RIN1及之前版本存在安全漏洞，该漏洞源于访问控制不足，可能导致存储型跨站脚本攻击。

Description (English)

SUSTOR ADM is a specialized operating system for all ASUSTOR NAS equipment of China’s Huashu (ASUS) company. Assustor ADM 4.1.0 to 4.3.3.RH61 and 5.0.0.RIN1 and previous versions have a security loophole, which stems from inadequate access controls and may lead to storage-type cross-site script attacks.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

华硕

Published

2025-07-14

Last Modified

2026-02-24

References

https://www.asustor.com/security/security_advisory_detail?id=44