CVE advisoryKnown Exploit
CVE-2022-24990
TerraMaster OS Password Disclosure Vulnerability.
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
TerraMaster NAS devices are affected by a vulnerability that allows attackers to discover administrative passwords. This exposure could lead to unauthorized access and control of the device and its data. The risk includes potential data breaches, system compromise, and disruption of services. The vulnerability is activ