ASUSTOR Product Beveiligings Advies

ASUSTOR is gecommitteerd aan klanten en data beveiliging naast de beveiliging van onze producten. We moedigen ontwikkelaars en ons publiek aan om elke potentiele of bevestigde beveiligings kwetsbaarheid die gevonden worden in een ASUSTOR product te melden aaan het ASUSTOR Security Response Team.

Kwetsbaarheden melden

Om zaken omtrent kwetsbaarheden die ASUSTOR producten betreft te melden, kunt u gebruik maken van de PGP sleutel die hieronder vermeld is om uw email te versleutelen en verzend u het naar security@asustor.com. Dit email adres kan geen antwoorden verzenden. Voor technische ondersteuning bezoekt u ons support center.

PGP sleutel Informatie

Wij adviseren om de PGP sleutel hieronder te gebruiken om uw email te versleutelen bij het rapporteren van beveiligings kwetsbaarheden aan ASUSTOR.

Product Security Updates

Om gebruikers te beschermen zal ASUSTOR geen veiligheidsproblemen openbaar melden totdat deze zijn opgelost, noch de exacte informatie over dergelijke veiligheidsproblemen. Zodra er fixes beschikbaar zijn, worden kwetsbaarheden aangekondigd op de officiële website van ASUSTOR.

Advisory	CVE	Severity	Status	Last Updated
AS-2024-003: Linux Kernel	CVE-2024-1086	Important	Ongoing	2024-04-17
AS-2024-002: XZ Utils	CVE-2024-3094	Not affected	Resolved	2024-04-03
AS-2024-001: Docker Engine	CVE-2024-21626, CVE-2024-24557	Important	Resolved	2024-03-13
AS-2023-014: OpenSSL	CVE-2023-2650, CVE-2023-3446, CVE-2023-3817...	Moderate	Ongoing	2023-12-28
AS-2023-013: OpenSSH	CVE-2023-38408	Important	Resolved	2023-11-29
AS-2023-012: ADM	CVE-2023-4475	Important	Resolved	2023-11-29
AS-2023-011: ADM	CVE-2023-3699	Important	Resolved	2023-11-29
AS-2023-010: ADM	CVE-2023-3697, CVE-2023-3698	Important	Resolved	2023-11-29
AS-2023-009: ADM	CVE-2023-2910	Important	Resolved	2023-11-29
AS-2023-008: PHP 8.1	CVE-2023-0662, CVE-2022-31630, CVE-2022-31627...	Important	Resolved	2023-06-07
AS-2023-007: EZ Sync on ADM	CVE-2023-2909	Important	Resolved	2023-06-29
AS-2023-006: Download Center	CVE-2023-2749	Important	Resolved	2023-06-21
AS-2023-005: Netatalk	CVE-2022-43634, CVE-2022-45188	Moderate	Resolved	2023-06-29
AS-2023-004: XSS issue on ADM, LooksGood and SoundsGood	CVE-2023-2509	Important	Ongoing	2024-01-24
AS-2023-003: ADM	CVE-2023-30770	Moderate	Resolved	2023-06-29
AS-2023-002: OpenSSL	CVE-2023-0215, CVE-2023-0286, CVE-2022-4304...	Important	Resolved	2023-06-29
AS-2023-001: Sudo	CVE-2023-22809	Moderate	Resolved	2023-02-20
AS-2022-017: Samba	CVE-2022-37966, CVE-2022-37967, CVE-2022-38023...	Moderate	Resolved	2023-02-20
AS-2022-016: Samba	CVE-2022-3437, CVE-2022-3592, CVE-2022-42898	Moderate	Resolved	2022-12-27
AS-2022-015: OpenSSL	CVE-2022-3602, CVE-2022-3786	Not affected	Resolved	2022-11-14
AS-2022-014: Samba	CVE-2022-2031, CVE-2022-32744, CVE-2022-32746...	Important	Resolved	2022-12-27
AS-2022-013: Apache HTTP Server	CVE-2022-26377, CVE-2022-28330, CVE-2022-28614...	Moderate	Resolved	2022-08-17
AS-2022-012: OpenLDAP	CVE-2022-29155, CVE-2020-36221, CVE-2020-25710...	Important	Resolved	2022-08-29
AS-2022-011: ADM	CVE-2022-37398	Important	Resolved	2022-08-29
AS-2022-010: PHP	CVE-2022-31625, CVE-2022-31626	Important	Resolved	2022-08-03
AS-2022-009: OpenSSL	CVE-2022-2068, CVE-2022-2097	Moderate	Resolved	2022-08-29
AS-2022-008: ADM: DeadBolt ransomware		Critical	Resolved	2022-06-14
AS-2022-007: OpenSSL	CVE-2022-1292, CVE-2022-1343, CVE-2022-1434...	Moderate	Resolved	2022-05-30
AS-2022-006: Netatalk	CVE-2021-31439, CVE-2022-23121, CVE-2022-23122...	Important	Resolved	2022-05-06
AS-2022-005: Apache HTTP Server	CVE-2022-22719, CVE-2022-22720, CVE-2022-22721...	Important	Resolved	2022-05-16
AS-2022-004: OpenSSL	CVE-2022-0778	Moderate	Resolved	2022-03-29
AS-2022-003: Linux Kernel	CVE-2022-0847	Not affected	Resolved	2022-07-07
AS-2022-002: ADM: DeadBolt ransomware		Critical	Resolved	2022-03-28
AS-2022-001: Samba	CVE-2021-44142	Important	Resolved	2022-02-15
AS-2021-001: Log4Shell (Log4j 2)	CVE-2021-44228, CVE-2021-45046, CVE-2021-44832	Not affected	Resolved	2021-12-16

Advisory

CVE

Severity

Status

Last Updated

AS-2024-003: Linux Kernel

CVE-2024-1086

Important

Ongoing

2024-04-17

AS-2024-002: XZ Utils

CVE-2024-3094

Not affected

Resolved

2024-04-03

AS-2024-001: Docker Engine

CVE-2024-21626, CVE-2024-24557

Important

Resolved

2024-03-13

AS-2023-014: OpenSSL

CVE-2023-2650, CVE-2023-3446, CVE-2023-3817...

Moderate

Ongoing

2023-12-28

AS-2023-013: OpenSSH

CVE-2023-38408

Important

Resolved

2023-11-29

AS-2023-012: ADM

CVE-2023-4475

Important

Resolved

2023-11-29

AS-2023-011: ADM

CVE-2023-3699

Important

Resolved

2023-11-29

AS-2023-010: ADM

CVE-2023-3697, CVE-2023-3698

Important

Resolved

2023-11-29

AS-2023-009: ADM

CVE-2023-2910

Important

Resolved

2023-11-29

AS-2023-008: PHP 8.1

CVE-2023-0662, CVE-2022-31630, CVE-2022-31627...

Important

Resolved

2023-06-07

AS-2023-007: EZ Sync on ADM

CVE-2023-2909

Important

Resolved

2023-06-29

AS-2023-006: Download Center

CVE-2023-2749

Important

Resolved

2023-06-21

AS-2023-005: Netatalk

CVE-2022-43634, CVE-2022-45188

Moderate

Resolved

2023-06-29

AS-2023-004: XSS issue on ADM, LooksGood and SoundsGood

CVE-2023-2509

Important

Ongoing

2024-01-24

AS-2023-003: ADM

CVE-2023-30770

Moderate

Resolved

2023-06-29

AS-2023-002: OpenSSL

CVE-2023-0215, CVE-2023-0286, CVE-2022-4304...

Important

Resolved

2023-06-29

AS-2023-001: Sudo

CVE-2023-22809

Moderate

Resolved

2023-02-20

AS-2022-017: Samba

CVE-2022-37966, CVE-2022-37967, CVE-2022-38023...

Moderate

Resolved

2023-02-20

AS-2022-016: Samba

CVE-2022-3437, CVE-2022-3592, CVE-2022-42898

Moderate

Resolved

2022-12-27

AS-2022-015: OpenSSL

CVE-2022-3602, CVE-2022-3786

Not affected

Resolved

2022-11-14

AS-2022-014: Samba

CVE-2022-2031, CVE-2022-32744, CVE-2022-32746...

Important

Resolved

2022-12-27

AS-2022-013: Apache HTTP Server

CVE-2022-26377, CVE-2022-28330, CVE-2022-28614...

Moderate

Resolved

2022-08-17

AS-2022-012: OpenLDAP

CVE-2022-29155, CVE-2020-36221, CVE-2020-25710...

Important

Resolved

2022-08-29

AS-2022-011: ADM

CVE-2022-37398

Important

Resolved

2022-08-29

AS-2022-010: PHP

CVE-2022-31625, CVE-2022-31626

Important

Resolved

2022-08-03

AS-2022-009: OpenSSL

CVE-2022-2068, CVE-2022-2097

Moderate

Resolved

2022-08-29

AS-2022-008: ADM: DeadBolt ransomware

Critical

Resolved

2022-06-14

AS-2022-007: OpenSSL

CVE-2022-1292, CVE-2022-1343, CVE-2022-1434...

Moderate

Resolved

2022-05-30

AS-2022-006: Netatalk

CVE-2021-31439, CVE-2022-23121, CVE-2022-23122...

Important

Resolved

2022-05-06

AS-2022-005: Apache HTTP Server

CVE-2022-22719, CVE-2022-22720, CVE-2022-22721...

Important

Resolved

2022-05-16

AS-2022-004: OpenSSL

CVE-2022-0778

Moderate

Resolved

2022-03-29

AS-2022-003: Linux Kernel

CVE-2022-0847

Not affected

Resolved

2022-07-07

AS-2022-002: ADM: DeadBolt ransomware

Critical

Resolved

2022-03-28

AS-2022-001: Samba

CVE-2021-44142

Important

Resolved

2022-02-15

AS-2021-001: Log4Shell (Log4j 2)

CVE-2021-44228, CVE-2021-45046, CVE-2021-44832

Not affected

Resolved

2021-12-16

Persoonlijk naar Home

Home naar Poweruser

Poweruser naar Business

Kleine en middelgrote bedrijven

Alle producten

Accessoires

Desktop Apps

ASUSTOR Product Beveiligings Advies

Kwetsbaarheden melden

PGP sleutel Informatie

Product Security Updates

Ondersteuning

ASUSTOR Online

Over Ons

Andere Dienstverleners

Persoonlijk naar Home

Home naar Poweruser

Poweruser naar Business

Kleine en middelgrote bedrijven

Uitbreidingseenheid

Alle producten

Accessoires

NAS Koopgids

Wat is ADM

NAS Apps

Probeer nu

Eigenschappen

Oplossingen

Thuisgebruikers / Contentontwerpers

Desktop Apps

Mobiele apps

Wat is er Nieuw

Wat is Surveillance Center

Probeer nu

Surveillance Beta Program

Eigenschappen

Ondersteuning

Ondersteuning

Extra

ASUSTOR online

Andere Dienstverleners

Security

Regio's

Andere Dienstverleners

zoekopdracht

ASUSTOR Product Beveiligings Advies

Kwetsbaarheden melden

PGP sleutel Informatie

Product Security Updates

Ondersteuning

ASUSTOR Online

Over Ons

Andere Dienstverleners