| Titel | sgwbox N3 NAS V2.0.25 Auth Bypass |
|---|
| Beschreibung | The sgwbox NAS N3 has an authentication bypass vulnerability. This vulnerability is caused by the failure to actually verify the token field passed in the POST message. This vulnerability can be used to remotely and unauthorizedly disclose internal information of the NAS, manipulate the NAS device to complete specific instructions, etc. |
|---|
| Quelle | ⚠️ https://www.notion.so/sgwbox-NAS-N3-Auth-Bypass-2be6cf4e528a8092b261fbc2abc3430c?source=copy_link |
|---|
| Benutzer | rgyue (UID 92984) |
|---|
| Einreichung | 05.12.2025 06:10 (vor 5 Monaten) |
|---|
| Moderieren | 14.12.2025 20:01 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 336420 [Shiguangwu sgwbox N3 2.0.25 POST Message /fsnotify token schwache Authentisierung] |
|---|
| Punkte | 15 |
|---|