إرسال #624554: H3C M2 V100R006 Misconfigurationالمعلومات

عنوانH3C M2 V100R006 Misconfiguration
الوصفIn H3C M2 NAS (private cloud storage) V100R006, there is a insecure configuration vulnerability. The device sets both User and Group property in the boa webserver configuration file to root permissions. This violates the principle of least privilege. Any exploit in the web interface can immediately grant root access, leading to total device compromise.
المصدر⚠️ https://www.notion.so/23f54a1113e7804bae88e76f9fb0cf5b
المستخدم
 TPCHECKER (UID 88463)
ارسال29/07/2025 05:41 AM (11 أشهر منذ)
الاعتدال13/08/2025 07:54 AM (15 days later)
الحالةتمت الموافقة
إدخال VulDB319861 [H3C M2 NAS V100R006 Webserver Configuration تجاوز الصلاحيات]
النقاط15

التالي نظرة عامة السابق

Want to stay up to date on a daily basis?

Enable the mail alert feature now!