cve/CVE-2023-5808.md at dd6a10065df501f0a524d47b55e162f16811ba93

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in a Storage administrative role are able to access HNAS configuration backup and diagnostic data, that would normally be barred to that specific administrative role.

POC

Reference

No PoCs from references.

Github

https://github.com/Arszilla/CVE-2023-5808
https://github.com/Arszilla/CVE-2023-6538
https://github.com/nomi-sec/PoC-in-GitHub

927 B Raw Blame History

CVE-2023-5808

Description

POC

Reference

Github

927 B

Raw Blame History