Vulnerabilities > Asustor > AS 602T > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-12-04 CVE-2018-12317 OS Command Injection vulnerability in Asustor Data Master 3.1.1
OS command injection in group.cgi in ASUSTOR ADM version 3.1.1 allows attackers to execute system commands as root by modifying the "name" POST parameter.
network
low complexity
asustor CWE-78
critical
9.0