TerraMaster

The recently discovered vulnerability in TerraMaster network-attached storage could give access to unauthenticated remote code execution.

The vulnerability could allow an attacker to access the victim's box simply by knowing the IP address.

These can also be used by the threat actors to deploy the ransomware in TOS version 4.2.30.

Source: https://thehackernews.com/2022/03/critical-bugs-in-terramaster-tos-could.html

TPRM report: https://scoringcyber.rankiteo.com/company/terra-master

"id": "ter3449322",
"linkid": "terra-master",
"type": "Vulnerability",
"date": "03/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'industry': 'Technology',
                        'name': 'TerraMaster',
                        'type': 'Organization'}],
 'attack_vector': 'Unauthenticated Remote Code Execution',
 'description': 'A recently discovered vulnerability in TerraMaster '
                'network-attached storage allows unauthenticated remote code '
                "execution. Attackers can access the victim's box simply by "
                'knowing the IP address. This vulnerability can also be used '
                'to deploy ransomware in TOS version 4.2.30.',
 'impact': {'systems_affected': 'TerraMaster NAS devices running TOS version '
                                '4.2.30'},
 'initial_access_broker': {'entry_point': 'Unauthenticated Remote Code '
                                          'Execution'},
 'motivation': ['Access to Sensitive Data', 'Ransomware Deployment'],
 'post_incident_analysis': {'root_causes': 'Vulnerability in TerraMaster NAS'},
 'title': 'TerraMaster NAS Vulnerability',
 'type': 'Vulnerability Exploitation',
 'vulnerability_exploited': 'TerraMaster NAS Vulnerability'}

TerraMaster

Brown, Lisle/Cummings, Inc.

Westmoreland Mechanical Testing & Research, Inc.

Perkins & Co