Exploit for CVE-2022-24990

  1. Home
  2. Uncategorized
  3. Exploit for CVE-2022-24990

Exploit for CVE-2022-24990

TerraMaster NAS 4.2.29 and earlier allows remote attackers to discover the administrative password by sending "User-Agent: TNAS" to module/api.php?mobile/webNasIPS and then reading the PWD field in the response.

Published: 2023-02-07

CVSS: 9.8

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Download Exploit for CVE-2022-24990 here:

Use Tor Browser to access .onion links.

Check our team here:

https://wednesfieldacademy.com/exploit-319-cve-2023-35628/

https://wednesfieldacademy.com/exploit-694-cve-2023-37580/

https://wednesfieldacademy.com/exploit-578-cve-2024-34350/

https://wednesfieldacademy.com/exploit-493-cve-2016-4117/

https://wednesfieldacademy.com/exploit-918-cve-2019-11068/

Latest News

Follow us on Social Media

Popular Pages

Contact Info

Wednesfield Academy
Lichfield Road
Wednesfield, Wolverhampton
West Midlands
WV11 3ES

T: 01902 558 222

postbox@wednesfieldacademy.co.uk

Monday - Thursday: 8:00 am - 4:00 pm
Friday: 8:00 am - 3:30 pm

Copyright 2026 © All Rights Reserved

 Privacy Notice

CEOP-1

Loading