Submit #706914: sgwbox N3 NAS V2.0.25 Auth Bypassinfo

Titlesgwbox N3 NAS V2.0.25 Auth Bypass
DescriptionThe sgwbox NAS N3 has an authentication bypass vulnerability. This vulnerability is caused by the failure to actually verify the token field passed in the POST message. This vulnerability can be used to remotely and unauthorizedly disclose internal information of the NAS, manipulate the NAS device to complete specific instructions, etc.
Source⚠️ https://www.notion.so/sgwbox-NAS-N3-Auth-Bypass-2be6cf4e528a8092b261fbc2abc3430c?source=copy_link
User
 rgyue (UID 92984)
Submission12/05/2025 06:10 (5 months ago)
Moderation12/14/2025 20:01 (10 days later)
StatusAccepted
VulDB entry336420 [Shiguangwu sgwbox N3 2.0.25 POST Message /fsnotify token improper authentication]
Points15

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!