Utilizamos cookies para nos ajudar a melhorar nossa página da web. Por favor, leia nossa Política de Cookies .

Segurança do produto ASUSTOR Consultivo

A ASUSTOR está comprometida com a segurança do cliente e dos dados, bem como com a segurança dos nossos produtos. Nós encorajamos os desenvolvedores e membros do público a relatar quaisquer vulnerabilidades de segurança potenciais ou confirmadas encontradas em um produto ASUSTOR para a Equipe de Resposta de Segurança ASUSTOR.

Relatório Vulnerabilidades

Para relatar problemas de segurança que afetam os produtos ASUSTOR, use a chave PGP abaixo para criptografar sua mensagem de e-mail e enviá-la para security@asustor.com. Este endereço de e-mail não pode enviar respostas. Para suporte técnico, visite nosso Centro de suporte invés disso.

Informação da chave PGP

Recomendamos usar a chave PGP abaixo para criptografar seu e-mail para relatar vulnerabilidades de segurança para ASUSTOR.

Atualizações de segurança do produto

Para proteger os usuários, o ASUSTOR não anuncia publicamente as vulnerabilidades de segurança até que as correções estejam publicamente disponíveis, nem os detalhes exatos de tais vulnerabilidades são divulgados. Assim que as correções estiverem disponíveis, as vulnerabilidades serão anunciadas no site oficial da ASUSTOR.

Advisory CVE Severity Status Last Updated
AS-2024-007: Apache HTTP Server CVE-2024-40725, CVE-2024-39884, CVE-2024-38474, ... Important Ongoing 2024-12-20
AS-2024-006: Netatalk CVE-2024-38439, CVE-2024-38440, CVE-2024-38441 Important Resolved 2024-09-27
AS-2024-005: Docker Engine CVE-2024-41110 Important Resolved 2024-08-07
AS-2024-004: OpenSSH CVE-2024-6387 Important Resolved 2024-07-17
AS-2024-003: Linux Kernel CVE-2024-1086 Important Resolved 2024-07-17
AS-2024-002: XZ Utils CVE-2024-3094 Not affected Resolved 2024-04-03
AS-2024-001: Docker Engine CVE-2024-21626, CVE-2024-24557 Important Resolved 2024-03-13
AS-2023-014: OpenSSL CVE-2023-2650, CVE-2023-3446, CVE-2023-3817... Moderate Resolved 2024-07-17
AS-2023-013: OpenSSH CVE-2023-38408 Important Resolved 2023-11-29
AS-2023-012: ADM CVE-2023-4475 Important Resolved 2023-11-29
AS-2023-011: ADM CVE-2023-3699 Important Resolved 2023-11-29
AS-2023-010: ADM CVE-2023-3697, CVE-2023-3698 Important Resolved 2023-11-29
AS-2023-009: ADM CVE-2023-2910 Important Resolved 2023-11-29
AS-2023-008: PHP 8.1 CVE-2023-0662, CVE-2022-31630, CVE-2022-31627... Important Resolved 2023-06-07
AS-2023-007: EZ Sync on ADM CVE-2023-2909 Important Resolved 2023-06-29
AS-2023-006: Download Center CVE-2023-2749 Important Resolved 2023-06-21
AS-2023-005: Netatalk CVE-2022-43634, CVE-2022-45188 Moderate Resolved 2023-06-29
AS-2023-004: XSS issue on ADM, LooksGood and SoundsGood CVE-2023-2509 Important Resolved 2024-05-14
AS-2023-003: ADM CVE-2023-30770 Moderate Resolved 2023-06-29
AS-2023-002: OpenSSL CVE-2023-0215, CVE-2023-0286, CVE-2022-4304... Important Resolved 2023-06-29
AS-2023-001: Sudo CVE-2023-22809 Moderate Resolved 2023-02-20
AS-2022-017: Samba CVE-2022-37966, CVE-2022-37967, CVE-2022-38023... Moderate Resolved 2023-02-20
AS-2022-016: Samba CVE-2022-3437, CVE-2022-3592, CVE-2022-42898 Moderate Resolved 2022-12-27
AS-2022-015: OpenSSL CVE-2022-3602, CVE-2022-3786 Not affected Resolved 2022-11-14
AS-2022-014: Samba CVE-2022-2031, CVE-2022-32744, CVE-2022-32746... Important Resolved 2022-12-27
AS-2022-013: Apache HTTP Server CVE-2022-26377, CVE-2022-28330, CVE-2022-28614... Moderate Resolved 2022-08-17
AS-2022-012: OpenLDAP CVE-2022-29155, CVE-2020-36221, CVE-2020-25710... Important Resolved 2022-08-29
AS-2022-011: ADM CVE-2022-37398 Important Resolved 2022-08-29
AS-2022-010: PHP CVE-2022-31625, CVE-2022-31626 Important Resolved 2022-08-03
AS-2022-009: OpenSSL CVE-2022-2068, CVE-2022-2097 Moderate Resolved 2022-08-29
AS-2022-008: ADM: DeadBolt ransomware Critical Resolved 2022-06-14
AS-2022-007: OpenSSL CVE-2022-1292, CVE-2022-1343, CVE-2022-1434... Moderate Resolved 2022-05-30
AS-2022-006: Netatalk CVE-2021-31439, CVE-2022-23121, CVE-2022-23122... Important Resolved 2022-05-06
AS-2022-005: Apache HTTP Server CVE-2022-22719, CVE-2022-22720, CVE-2022-22721... Important Resolved 2022-05-16
AS-2022-004: OpenSSL CVE-2022-0778 Moderate Resolved 2022-03-29
AS-2022-003: Linux Kernel CVE-2022-0847 Not affected Resolved 2022-07-07
AS-2022-002: ADM: DeadBolt ransomware Critical Resolved 2022-03-28
AS-2022-001: Samba CVE-2021-44142 Important Resolved 2022-02-15
AS-2021-001: Log4Shell (Log4j 2) CVE-2021-44228, CVE-2021-45046, CVE-2021-44832 Not affected Resolved 2021-12-16