| عنوان | Ugreen NAS DH2100+ V5.3.0 Incorrect Access Control |
|---|
| الوصف | A vulnerability exists in UGREEN NAS devices that allows for the leakage and modification of arbitrary files within the system. This vulnerability stems from lax checks on symbolic links within external USB devices. An attacker could create symbolic links to arbitrary files on a USB device and insert them into the NAS device, thereby gaining access to or modifying the corresponding files within the system through the UGREEN NAS client, compromising confidentiality and integrity. |
|---|
| المصدر | ⚠️ https://www.notion.so/2bc6cf4e528a8083bf3fc6f7a953f0a1 |
|---|
| المستخدم | rgyue (UID 92984) |
|---|
| ارسال | 02/12/2025 05:33 AM (5 أشهر منذ) |
|---|
| الاعتدال | 14/12/2025 11:48 AM (12 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 336411 [Ugreen DH2100+ حتى 5.3.0 USB تجاوز الصلاحيات] |
|---|
| النقاط | 17 |
|---|