A stack-based buffer overflow vulnerability in the VPN Clients on...

8.6 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L

Description

A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stems from the use of unbounded sscanf() and passing user-controlled data directly to printf(). Due to the lack of PIE and Stack Canary protections, an authenticated remote attacker can exploit these to execute arbitrary code as the web server user.
Affected products and versions include: from ADM 4.1.0 through ADM 4.3.3.RR42 as well as from ADM 5.0.0 through ADM 5.1.2.REO1.

AI Analysis

A stack-based buffer overflow vulnerability in the VPN Clients on the ADM, allowing authenticated remote attackers to execute arbitrary code as the web server user.

Basic Information

ID CVE-2026-6643

Source ASUSTOR1

Published Apr 20, 2026 at 06:34

Affected Product

Vendor ASUSTOR Inc.

Product ADM

Version 4.1.0

Affected Versions ASUSTOR Inc. ADM 4.1.0
ASUSTOR Inc. ADM 5.0.0

CWE Classification

CWE-121

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor ASUSTOR Inc.

Product ADM

Version 4.1.0-4.3.3.RR42, 5.0.0-5.1.2.REO1

References

www.asustor.com /security/security_advisory_detail

{
    "lastseen": "",
    "description": "A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stems from the use of unbounded sscanf() and passing user-controlled data directly to printf(). Due to the lack of PIE and Stack Canary protections, an authenticated remote attacker can exploit these to execute arbitrary code as the web server user. \nAffected products and versions include: from ADM 4.1.0 through ADM 4.3.3.RR42 as well as from ADM 5.0.0 through ADM 5.1.2.REO1.",
    "published": "2026-04-20T06:34:27.511Z",
    "modified": "2026-04-20T06:34:27.511Z",
    "type": "cve",
    "title": "A stack-based buffer overflow vulnerability in the VPN Clients on the ADM",
    "source": "ASUSTOR1",
    "references": "https://www.asustor.com/security/security_advisory_detail?id=54",
    "id": "CVE-2026-6643",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121"
    ],
    "cvelist": null,
    "sourceData": "ASUSTOR Inc. ADM 4.1.0\nASUSTOR Inc. ADM 5.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ADM",
    "version": "4.1.0",
    "vendor": "ASUSTOR Inc.",
    "ai_description": "A stack-based buffer overflow vulnerability in the VPN Clients on the ADM, allowing authenticated remote attackers to execute arbitrary code as the web server user.",
    "ai_severity": "High",
    "ai_vendor": "ASUSTOR Inc.",
    "ai_product": "ADM",
    "ai_version": "4.1.0-4.3.3.RR42, 5.0.0-5.1.2.REO1",
    "ai_score": 8.6
}

A stack-based buffer overflow vulnerability in the VPN Clients on the ADM_CVE-2026-6643