Primary

Context

Asustor ABP and AES Unauthorized Code Execution Vulnerability via DLL Injection

Vulnerability

A vulnerability exists in ASUSTOR Backup Plan (ABP) versions through 2.0.7.9050 and ASUSTOR EZSync (AES) versions through 1.0.6.8290. When these services are installed in a directory writable by non-administrative users, an attacker can replace or introduce a DLL with the same name as one used by the service. Upon restarting the service, the malicious DLL is executed under the LocalSystem account, leading to unauthorized code execution with elevated privileges.

Impact

Exploitation of this vulnerability allows for unauthorized code execution with elevated privileges, as the injected DLL is executed under the LocalSystem account.

Remediation

Users can upgrade to ABP version 2.0.7.10171 or AES version 1.1.0.10312 to address this vulnerability.

Added: Nov 19, 2025, 4:18 AM

Updated: Nov 19, 2025, 4:18 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Asustor ABP and AES Unauthorized Code Execution Vulnerability via DLL Injection

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating