Vulnerabilities > Asustor > ADM > 4.0.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-31 | CVE-2023-2909 | Path Traversal vulnerability in Asustor ADM EZ Sync service fails to adequately handle user input, allowing an attacker to navigate beyond the intended directory structure and delete files. | 10.0 |
| 2023-05-17 | CVE-2023-2509 | Cross-site Scripting vulnerability in Asustor Adm, Looksgood and Soundsgood A Cross-Site Scripting(XSS) vulnerability was found on ADM, LooksGood and SoundsGood Apps. | 6.1 |
| 2022-08-05 | CVE-2022-37398 | Out-of-bounds Write vulnerability in Asustor ADM A stack-based buffer overflow vulnerability was found inside ADM when using WebDAV due to the lack of data size validation. | 8.8 |