CVE-2025-7378
Severity CVSS v4.0:
MEDIUM
Type:
CWE-20
Input Validation
Publication date:
09/07/2025
Last modified:
10/07/2025
Description
An improper Input Validation vulnerability allows injecting arbitrary values of the NAS configuration file in ASUSTOR ADM. This could potentially lead to system misconfiguration and break the format of the configuation file, causing the NAS to exhibit unexpected behavior.<br />
This issue affects ADM: from 4.1 before 4.3.1.R5A1.