CVE-2018-13337

Name of the Vulnerable Software and Affected Versions TerraMaster TOS version 3.1.03

Description The issue allows attackers to control users' session cookies via JavaScript, potentially leading to session fixation in the web application.

Recommendations For TerraMaster TOS version 3.1.03, consider disabling JavaScript execution in the web application as a temporary workaround until a patch is available. Restrict access to sensitive session cookie information to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.