CVE-2025-7378

Severity CVSS v4.0:
MEDIUM
Type:
CWE-20 Input Validation
Publication date:
09/07/2025
Last modified:
10/07/2025

Description

An improper Input Validation vulnerability allows injecting arbitrary values of the NAS configuration file in ASUSTOR ADM. This could potentially lead to system misconfiguration and break the format of the configuation file, causing the NAS to exhibit unexpected behavior.<br /> This issue affects ADM: from 4.1 before 4.3.1.R5A1.

References to Advisories, Solutions, and Tools