Vulnerabilities > Terra Master

DATE	CVE	VULNERABILITY TITLE	RISK
2019-10-23	CVE-2019-18384	Unspecified vulnerability in Terra-Master Fs-210 Firmware 4.0.19 An issue was discovered on TerraMaster FS-210 4.0.19 devices. network low complexity terra-master	6.5
2019-10-23	CVE-2019-18383	Missing Authorization vulnerability in Terra-Master Fs-210 Firmware 4.0.19 An issue was discovered on TerraMaster FS-210 4.0.19 devices. network low complexity terra-master CWE-862	7.5
2018-11-27	CVE-2018-13418	OS Command Injection vulnerability in Terra-Master Terramaster Operating System 3.1.03 System command injection in ajaxdata.php in TerraMaster TOS 3.1.03 allows attackers to execute system commands via the "newname" parameter. network low complexity terra-master CWE-78	8.8
2018-11-27	CVE-2018-13361	Improper Input Validation vulnerability in Terra-Master Terramaster Operating System 3.1.03 User enumeration in usertable.php in TerraMaster TOS version 3.1.03 allows attackers to list all system users via the "modgroup" parameter. network low complexity terra-master CWE-20	5.3
2018-11-27	CVE-2018-13360	Cross-site Scripting vulnerability in Terra-Master Terramaster Operating System 3.1.03 Cross-site scripting in Text Editor in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript via the "filename" URL parameter. network low complexity terra-master CWE-79	6.1
2018-11-27	CVE-2018-13359	Cross-site Scripting vulnerability in Terra-Master Terramaster Operating System 3.1.03 Cross-site scripting in usertable.php in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript via the "modgroup" parameter. network low complexity terra-master CWE-79	8.8
2018-11-27	CVE-2018-13358	OS Command Injection vulnerability in Terra-Master Terramaster Operating System 3.1.03 System command injection in ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to execute system commands via the "checkName" parameter. network low complexity terra-master CWE-78	8.8
2018-11-27	CVE-2018-13357	Cross-site Scripting vulnerability in Terra-Master Terramaster Operating System 3.1.03 Cross-site scripting in Control Panel in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript when viewing Shared Folders via JavaScript in Shared Folders' names. network low complexity terra-master CWE-79	5.4
2018-11-27	CVE-2018-13356	Incorrect Authorization vulnerability in Terra-Master Terramaster Operating System 3.1.03 Incorrect access control on ajaxdata.php in TerraMaster TOS version 3.1.03 allows attackers to elevate user permissions. network low complexity terra-master CWE-863	8.8
2018-11-27	CVE-2018-13355	Incorrect Permission Assignment for Critical Resource vulnerability in Terra-Master Terramaster Operating System 3.1.03 Incorrect access controls in ajaxdata.php in TerraMaster TOS version 3.1.03 allow attackers to create user groups without proper authorization. network low complexity terra-master CWE-732	6.5

Vulnerabilities > Terra Master {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Terra Master"}]}

Vulnerabilities > Terra Master