Skip to main content

Actinas Sl 2U 8 Rdx Firmware

2 CVEs product

Monthly

CVE-2023-51947 CRITICAL POC Act Now

Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass PHP Actinas Sl 2U 8 Rdx Firmware
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
0.9%
CVE-2023-51946 MEDIUM POC This Month

Multiple reflected cross-site scripting (XSS) vulnerabilities in nasSvr.php in actidata actiNAS-SL-2U-8 3.2.03-SP1 allow remote attackers to inject arbitrary web script or HTML. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Actinas Sl 2U 8 Rdx Firmware
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
EPSS 1% CVSS 9.1
CRITICAL POC Act Now

Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass PHP Actinas Sl 2U 8 Rdx Firmware
NVD GitHub VulDB
EPSS 1% CVSS 6.1
MEDIUM POC This Month

Multiple reflected cross-site scripting (XSS) vulnerabilities in nasSvr.php in actidata actiNAS-SL-2U-8 3.2.03-SP1 allow remote attackers to inject arbitrary web script or HTML. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Actinas Sl 2U 8 Rdx Firmware
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy