PatchSiren

TerraMaster CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

Known exploited TerraMaster CVE published 2023-02-10

CVE-2022-24990

CVE-2022-24990 is a TerraMaster OS remote command execution vulnerability that CISA added to its Known Exploited Vulnerabilities catalog on 2023-02-10. The KEV metadata marks the issue as having known ransomware campaign use, so TerraMaster OS deployments should be treated as a high-priority remediation item.