ASUSTOR Data Master (ADM) Improper Privilege Management Vulnerability

ASUSTOR Data Master (ADM) Improper Privilege Management Vulnerability

CVE-2023-3699 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

An Improper Privilege Management vulnerability was found in ASUSTOR Data Master (ADM) allows an unprivileged local users to modify the storage devices configuration. Affected products and versions include: ADM 4.0.6.RIS1, 4.1.0 and below as well as ADM 4.2.2.RI61 and below.

Learn more about our User Device Pen Test.