Gửi #698570: SGAI N1211DS NAS v1.0.915 Command Injectionthông tin

tiêu đềSGAI N1211DS NAS v1.0.915 Command Injection
Mô tảThe SGAI Space1 NAS (model N1211DS, firmware version v1.0.915) contains an unauthorized remote command execution vulnerability caused by command injection. An attacker who has not been authenticated can inject malicious commands into the path field through the NGNIX_UPLOAD command interface, thereby triggering a command injection vulnerability and gaining the highest level of control over the remote target NAS device.
Nguồn⚠️ https://www.notion.so/2b16cf4e528a808eadf8dfbcd054740d
Người dùng
 renguangyue (UID 92629)
Đệ trình20/11/2025 08:18 (cách đây 5 các tháng)
Kiểm duyệt06/12/2025 10:02 (16 days later)
Trạng tháiBản sao
Mục VulDB334604 [SGAI Space1 NAS N1211DS đến 1.0.915 gsaiagent /cgi-bin/JSONAPI RENAME_FILE/OPERATE_FILE/NGNIX_UPLOAD nâng cao đặc quyền]
điểm0

TrướcTổng QuanTiếp theo

Do you want to use VulDB in your project?

Use the official API to access entries easily!