Improper input validation in Asustor Adm
CVE-2025-7378
An improper Input Validation vulnerability allows injecting arbitrary values of the NAS configuration file in ASUSTOR ADM. This could potentially lead to system misconfiguration and break the format of the configuation file, causing the NA…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.001 (2.7th percentile) — read the EPSS interpretation.
Affected products
- Asustor Adm — versions 4.1
Weakness classification (CWE)
References
- security@asustor.com (vendor-advisory)