PoC Disclosed for Critical Root ASUSTOR ADM RCE Flaw
A critical vulnerability, tracked as CVE-2026-6644, has been uncovered in ASUSTOR’s ADM (ASUSTOR Data Master) operating system. Specifically, the flaw exists within the PPTP VPN Client feature. Carrying a CVSS v4.0 score of 9.4, this OS command injection vulnerability allows an authenticated adminis
ORIGINAL SOURCE →via GBHackers Security
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] IDF major charged with aiding enemy, taking bribe in alleged Gaza smuggling scheme
- [CYBER] France probes teenage suspect in massive ID data breach
- [CYBER] CVE-2026-7246 - Pallets Click contains a command injection via Unsanitized Filename "click.edit()"
- [CYBER] CVE-2026-7163 - Assisted-service: assisted-service: authenticated users can gain administrative access to openshift clusters via credential disclosure
- [CYBER] CVE-2026-2892 - Otter Blocks <= 3.1.4 - Improper Authorization to Unauthenticated Purchase Verification Bypass via Forged Cookie
- [CYBER] Anti-DDoS Firm Heaped Attacks on Brazilian ISPs