Known Vulnerabilities for Tos by Terra-master
Listed below are 10 of the newest known vulnerabilities associated with "Tos" by "Terra-master".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-45842 json | It is possible to obtain the first administrator's hash set up in Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517) on... | 7.5 - HIGH | 2022-04-25 | 2022-05-05 |
| CVE-2021-45841 json | In Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517), an attacker can self-sign session cookies by knowing the target'... | 8.1 - HIGH | 2022-04-25 | 2023-08-08 |
| CVE-2021-45840 json | It is possible to execute arbitrary commands as root in Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517) by sending s... | 9.8 - CRITICAL | 2022-04-25 | 2022-05-05 |
| CVE-2021-45839 json | It is possible to obtain the first administrator's hash set up on the system in Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-... | 6.5 - MEDIUM | 2022-04-25 | 2023-06-12 |
| CVE-2021-45837 json | It is possible to execute arbitrary commands as root in Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517) by sending a... | 9.8 - CRITICAL | 2022-04-25 | 2023-06-12 |
| CVE-2021-45836 json | An authenticated attacker can execute arbitrary commands as root in Terramaster F4-210, F2-210 TOS 4.2.X (4.2.15-2107141517) ... | 8.8 - HIGH | 2022-04-25 | 2022-05-05 |
| CVE-2020-29189 json | Incorrect Access Control vulnerability in TerraMaster TOS <= 4.2.06 allows remote authenticated attackers to bypass read-only... | 8.1 - HIGH | 2020-12-24 | 2021-07-21 |
| CVE-2020-28190 json | TerraMaster TOS <= 4.2.06 was found to check for updates (of both system and applications) via an insecure channel (HTTP). Ma... | 5.9 - MEDIUM | 2020-12-24 | 2020-12-28 |
| CVE-2020-28188 json | Remote Command Execution (RCE) vulnerability in TerraMaster TOS <= 4.2.06 allow remote unauthenticated attackers to inject OS... | 9.8 - CRITICAL | 2020-12-24 | 2023-06-12 |
| CVE-2020-28187 json | Multiple directory traversal vulnerabilities in TerraMaster TOS <= 4.2.06 allow remote authenticated attackers to read, edit ... | 9.8 - CRITICAL | 2020-12-24 | 2020-12-28 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Terra-master | Tos | 4.2.06 | |||
| Operating System | Terra-master | Tos | 4.2.05 | |||
| Operating System | Terra-master | Tos | 4.2.04 | |||
| Operating System | Terra-master | Tos | 4.1.31 | |||
| Operating System | Terra-master | Tos | 4.1.30 | |||
| Operating System | Terra-master | Tos | 4.1.29 | |||
| Operating System | Terra-master | Tos | 4.1.28 | |||
| Operating System | Terra-master | Tos | 4.1.27 | |||
| Operating System | Terra-master | Tos | 4.1.24 | |||
| Operating System | Terra-master | Tos | 4.1.21 | |||
| Operating System | Terra-master | Tos | 4.1.18 | |||
| Operating System | Terra-master | Tos | 4.0.18 | |||
| Operating System | Terra-master | Tos | 4.0.17 | |||
| Operating System | Terra-master | Tos | 4.0.09 | |||
| Operating System | Terra-master | Tos | 4.0.02 | |||
| Application | Terra-master | Tos | 3.0.33 | |||
| Operating System | Terra-master | Tos | - |