TerraMaster TOS session 伪造、任意⽂件读取、远程命令执⾏等多个漏洞

Follow 0

Basic Fields

SSV ID:: SSV-99426

Find Time:: Unknown

Submit Time:: 2022-01-02

Level:

Category:: 命令执行

Component:: TerraMaster TOS
(TOS 4.2.X)

Author:: Unknown

Submitter:: Knownsec

CVE-ID：: Add

CNNVD-ID：: Add

CNVD-ID：: Add

ZoomEye Dork：: Add

Source

https://packetstormsecurity.com/files/165399/terramaster-exec.py.txt

Detail

Contributor Got 0KB

Unopen

have 0 exchange

PoC (非 pocsuite 插件)

Contributor Knownsec totally have 0KB

Unopen

have 0 Exchange

Reference Linking

https://packetstormsecurity.com/files/165399/terramaster-exec.py.txt

Solutions

Temp Solutions

Unavailable Temp Solutions

Official Solution

Unavailable Official solution

Defense Solutions

Unavailable Defense Solutions

Unavailable Comments

※Any content provided by this site, only to learn the code and services, not for illegal purposes