Lockerstor 4 Gen2 - A good helper to expand the world map of A2Z Paint Engineering Company

A2Z Paint Engineering Co., Ltd. is located in Melbourne, Florida, USA, and focuses on painting projects for commercial and residential buildings. A2Z has been responsible for numerous high-profile projects, including the Melbourne Square Mall and Dick's Sporting Goods. On average, A2Z executes more than 100 projects every year with both indoor and outdoor projects making up their roster.

Whether it is for a workflow or company project management, A2Z used to use a cloud storage platform to store files. However, this storage method prevents A2Z from directly and easily managing files, resulting in low efficiency when collaborating on projects. Through Navfile’s suggestion, A2Z went out and acquired an ASUSTOR Lockerstor 4 Gen2 as a storage solution to help organize all of their files in one location using NavFile's Owncloud to share all project content in a single folder with the rest of the work team. With the ASUSTOR Lockerstor 4 Gen2, A2Z improved their workflow and can now more efficiently check the progress of projects no matter where they are around the world and easily track management of those projects.

A Command Injection vulnerability was found in ASUSTOR Data Master (ADM) allows remote unauthorized users to execute arbitrary commands via unspecified vectors. 

A Directory traversal vulnerability was found in ASUSTOR Data Master (ADM) allows remote unauthorized users to navigate beyond the intended directory structure.

An Improper Privilege Management vulnerability was found in ASUSTOR Data Master (ADM) allows unprivileged local users to modify the storage device configuration.

An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master (ADM) allows an attacker to exploit the file renaming feature to move files to unintended directories.
These issues have been fixed on ADM 4.2.3.RK91.