cbcvebase.

Starwindsoftware Nas vulnerabilities

9 known vulnerabilities affecting starwindsoftware/nas.

Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH3MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2022-24552P2CRITICALCVSS 9.8fixed in 0.22022-02-06
CVE-2022-24552 [CRITICAL] CWE-78 CVE-2022-24552: A flaw was found in the REST API in StarWind Stack. REST command, which manipulates a virtual disk, A flaw was found in the REST API in StarWind Stack. REST command, which manipulates a virtual disk, doesn’t check input parameters. Some of them go directly to bash as part of a script. An attacker with non-root user access can inject arbitrary data into the command that will be executed with root privileges. This affects StarWind SAN and NAS v0.2 b
nvd
CVE-2022-24551P3HIGHCVSS 8.8fixed in 0.22022-02-06
CVE-2022-24551 [HIGH] CWE-287 CVE-2022-24551: A flaw was found in StarWind Stack. The endpoint for setting a new password doesn’t check the curren A flaw was found in StarWind Stack. The endpoint for setting a new password doesn’t check the current username and old password. An attacker could reset any local user password (including system/administrator user) using any available user This affects StarWind SAN and NAS v0.2 build 1633.
nvd
CVE-2007-1543P3CRITICALCVSS 10.0≥ 0, < 1.8-42007-03-20
CVE-2007-1543 [CRITICAL] CVE-2007-1543: Stack-based buffer overflow in the accept_att_local function in server/os/connection Stack-based buffer overflow in the accept_att_local function in server/os/connection.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to execute arbitrary code via a long path slave name in a USL socket connection.
osv
CVE-2013-4258P3HIGHCVSS 7.5≥ 0, < 1.9.3-62013-10-09
CVE-2013-4258 [HIGH] CVE-2013-4258: Format string vulnerability in the osLogMsg function in server/os/aulog Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System (NAS) 1.9.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to syslog.
osv
CVE-2007-1547P4HIGHCVSS 7.8≥ 0, < 1.8-42007-03-20
CVE-2007-1547 [HIGH] CVE-2007-1547: The ReadRequestFromClient function in server/os/io The ReadRequestFromClient function in server/os/io.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) via multiple simultaneous connections, which triggers a NULL pointer dereference.
osv
CVE-2007-1544P4MEDIUMCVSS 5.0≥ 0, < 1.8-42007-03-20
CVE-2007-1544 [MEDIUM] CVE-2007-1544: Integer overflow in the ProcAuWriteElement function in server/dia/audispatch Integer overflow in the ProcAuWriteElement function in server/dia/audispatch.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large max_samples value.
osv
CVE-2013-4256P4MEDIUMCVSS 4.6≥ 0, < 1.9.3-62013-10-09
CVE-2013-4256 [MEDIUM] CVE-2013-4256: Multiple stack-based and heap-based buffer overflows in Network Audio System (NAS) 1 Multiple stack-based and heap-based buffer overflows in Network Audio System (NAS) 1.9.3 allow local users to cause a denial of service (crash) or possibly execute arbitrary code via the (1) display command argument to the ProcessCommandLine function in server/os/utils.c; (2) ResetHosts function in server/os/access.c; (3) open_unix_socket, (4) open_isc_local, (5) open_xsight
osv
CVE-2007-1545P4MEDIUMCVSS 5.0≥ 0, < 1.8-42007-03-20
CVE-2007-1545 [MEDIUM] CVE-2007-1545: The AddResource function in server/dia/resource The AddResource function in server/dia/resource.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (server crash) via a nonexistent client ID.
osv
CVE-2007-1546P4MEDIUMCVSS 5.0≥ 0, < 1.8-42007-03-20
CVE-2007-1546 [MEDIUM] CVE-2007-1546: Array index error in Network Audio System (NAS) before 1 Array index error in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) via (1) large num_action values in the ProcAuSetElements function in server/dia/audispatch.c or (2) a large inputNum parameter to the compileInputs function in server/dia/auutil.c.
osv
Starwindsoftware Nas vulnerabilities | cvebase