Y S Corporation Stealthone D220 vulnerabilities
3 known vulnerabilities affecting y_s_corporation/stealthone_d220.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2
Vulnerabilities
Page 1 of 1
CVE-2025-20055P2CRITICALCVSS 9.8vfirmware v6.03.02 and earlier2025-01-14
CVE-2025-20055 [CRITICAL] CWE-78 CVE-2025-20055: OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340 provided b
OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340 provided by Y'S corporation. An attacker who can access the affected product may execute an arbitrary OS command.
nvd
CVE-2025-20016P3HIGHCVSS 7.2vfirmware v6.03.02 and earlier2025-01-14
CVE-2025-20016 [HIGH] CWE-78 CVE-2025-20016: OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340/D440 provi
OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340/D440 provided by Y'S corporation. A user with an administrative privilege who logged in to the web management page of the affected product may execute an arbitrary OS command.
nvd
CVE-2025-20620P3HIGHCVSS 7.5vfirmware v6.03.02 and earlier2025-01-14
CVE-2025-20620 [HIGH] CWE-89 CVE-2025-20620: SQL Injection vulnerability exists in STEALTHONE D220/D340 provided by Y'S corporation. An attacker
SQL Injection vulnerability exists in STEALTHONE D220/D340 provided by Y'S corporation. An attacker who can access the affected product may obtain the administrative password of the web management page.
nvd