[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":40,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":47,"vulnerability-20096":53,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":84},[4,15,24,29,35],{"title":5,"slug":6,"text":7,"link":8,"external":9,"targets":10,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - CVE Page","nginx-rift-cve-page","🚨 New: FREE SCANNER for NGINX Rift (CVE-2026-42945). No account needed.","https://pentest-tools.com/network-vulnerability-scanning/cve-2026-42945-scanner-nginx-rift",true,[11],"/vulnerabilities-exploits/nginx-heap-buffer-overflow_29311","Scan for free","secondary","nginx-rift",{"title":16,"slug":17,"text":18,"link":19,"external":9,"targets":20,"cta":22,"variant":23,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - Network Scanner","nginx-rift-network-scanner","🚨 Detection for NGINX Rift (CVE-2026-42945) now live. Are you exposed?","https://pentest-tools.com/pricing",[21],"/network-vulnerability-scanning/network-security-scanner-online","Find out with any plan","primary",{"title":25,"slug":26,"text":18,"link":19,"external":9,"targets":27,"cta":22,"variant":23,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - Port Scanner","nginx-rift-port-scanner",[28],"/network-vulnerability-scanning/port-scanner-online-nmap",{"title":30,"slug":31,"text":32,"link":8,"external":9,"targets":33,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 - VulnDB Index","nginx-rift-vulndb","🚨 New: free scanner for NGINX Rift (CVE-2026-42945). Check your targets now.",[34],"/vulnerabilities-exploits",{"title":36,"slug":37,"text":32,"link":8,"external":9,"targets":38,"cta":12,"variant":13,"campaign_id":14},"NGINX Rift free scanner - CVE-2026-42945 -blog","nginx-rift-blog",[39],"/blog",["Island",41],{"key":42,"params":43,"result":45},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":44},"{}",{"head":46},{},["Island",48],{"key":49,"params":50,"result":51},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":44},{"head":52},{},{"id":54,"detectable_with":55,"vuln_details":62,"vuln_id":81,"name":82,"published":83,"updated":63},20096,{"tool":56,"engine":59},{"id":57,"name":58},1,"Network Scanner",{"id":60,"name":61},3,"OpenVAS",{"id":54,"codename":63,"description":63,"severity":64,"risk_description":65,"public_description":66,"public_recommendation":67,"recommendation":63,"references":68,"cvssv3":72,"epss_score":73,"epss_percentile":74,"cve":75,"in_cisa_catalog":9,"date":80,"software_type":63,"vendor":63,"product":63,"ptt_exploit_capabilities":63},null,"high","The following vulnerabilities exist: - CVE-2021-45839: It is possible to obtain the first administrators hash set up on the system as well as other information such as MAC address, internal IP address etc. by performing a request to the /module/api.php?mobile/webNasIPS endpoint. - CVE-2021-45842: It is possible to obtain the first administrators hash set up on the system as well as other information such as MAC address, internal IP address etc. by performing a request to the /module/api.php?mobile/wapNasIPS endpoint. - CVE-2022-24989: TerraMaster NAS allows remote WAN attackers to execute arbitrary code as root via the raidtype and diskstring parameters for PHP Object Instantiation to the api.php?mobile/createRaid URI. - CVE-2022-24990: TerraMaster NAS allows remote attackers to discover the administrative password by sending User-Agent: TNAS to module/api.php?mobile/webNasIPS and then reading the PWD field in the response.","Terramaster TOS is prone to multiple information disclosure vulnerabilities.","Update to version 4.2.31 or later.",[69,70,71,71],"https://www.cisa.gov/known-exploited-vulnerabilities-catalog","https://thatsn0tmy.site/posts/2021/12/how-to-summon-rces/","https://octagon.net/blog/2022/03/07/cve-2022-24990-terrmaster-tos-unauthenticated-remote-command-execution-via-php-object-instantiation/",7.5,0.94404,0.99978,[76,77,78,79],"CVE-2021-45839","CVE-2021-45842","CVE-2022-24989","CVE-2022-24990","2022-04-25T00:00:00Z","NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.149351","Terramaster TOS \u003C 4.2.31 Multiple Information Disclosure Vulnerabilities - Active Check","2023-02-22T00:00:00Z",["Island",85],{"key":86,"params":87,"result":89},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":88},"{\"text-color\":\"gray\"}",{"head":90},{}]