| 标题 | sgwbox N3 NAS V2.0.25 Auth Bypass |
|---|
| 描述 | The sgwbox NAS N3 has an authentication bypass vulnerability. This vulnerability is caused by the failure to actually verify the token field passed in the POST message. This vulnerability can be used to remotely and unauthorizedly disclose internal information of the NAS, manipulate the NAS device to complete specific instructions, etc. |
|---|
| 来源 | ⚠️ https://www.notion.so/sgwbox-NAS-N3-Auth-Bypass-2be6cf4e528a8092b261fbc2abc3430c?source=copy_link |
|---|
| 用户 | rgyue (UID 92984) |
|---|
| 提交 | 2025-12-05 06時10分 (5 月前) |
|---|
| 管理 | 2025-12-14 20時01分 (10 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 336420 [Shiguangwu sgwbox N3 2.0.25 POST Message /fsnotify token 弱身份验证] |
|---|
| 积分 | 15 |
|---|