[CVE-2022-24990] TerraMaster OS Remote Command Execution Vulnerability

NVD 상세 정보

설명: TerraMaster NAS 4.2.29 and earlier allows remote attackers to discover the administrative password by sending "User-Agent: TNAS" to module/api.php?mobile/webNasIPS and then reading the PWD field in the response.

CWE: CWE-306 | CWE-306

참조

• http://packetstormsecurity.com/files/172904/TerraMaster-TOS-4.2.29-Remote-Code-Execution.html [Exploit, Third Party Advisory, VDB Entry]
• https://forum.terra-master.com/en/viewforum.php?f=28 [Issue Tracking, Release Notes]
• https://github.com/0xf4n9x/CVE-2022-24990 [Exploit, Third Party Advisory]
• https://octagon.net/blog/2022/03/07/cve-2022-24990-terrmaster-tos-unauthenticated-remote-command-execution-via-php-object-instantiation/ [Exploit, Third Party Advisory]
• https://www.broadcom.com/support/security-center/attacksignatures/detail?asid=33732 [Third Party Advisory]
• http://packetstormsecurity.com/files/172904/TerraMaster-TOS-4.2.29-Remote-Code-Execution.html [Exploit, Third Party Advisory, VDB Entry]
• https://forum.terra-master.com/en/viewforum.php?f=28 [Issue Tracking, Release Notes]
• https://github.com/0xf4n9x/CVE-2022-24990 [Exploit, Third Party Advisory]
• https://octagon.net/blog/2022/03/07/cve-2022-24990-terrmaster-tos-unauthenticated-remote-command-execution-via-php-object-instantiation/ [Exploit, Third Party Advisory]
• https://www.broadcom.com/support/security-center/attacksignatures/detail?asid=33732 [Third Party Advisory]
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-24990 [US Government Resource]