Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 1:11 p.m.8 views

CVE-2018-18471

/api/2.0/rest/aggregator/xml in Axentra firmware, used by NETGEAR Stora, Seagate GoFlex Home, and MEDION LifeCloud, has an XXE vulnerability that can be chained with an SSRF bug to gain remote command execution as root. It can be triggered by anyone who knows the IP address of the affected device...

10CVSS7.4AI score0.07707EPSS
Exploits1References1
Prion
Prionadded 2019/06/19 4:15 p.m.13 views

Command injection

/api/2.0/rest/aggregator/xml in Axentra firmware, used by NETGEAR Stora, Seagate GoFlex Home, and MEDION LifeCloud, has an XXE vulnerability that can be chained with an SSRF bug to gain remote command execution as root. It can be triggered by anyone who knows the IP address of the affected device...

10CVSS9.6AI score0.07707EPSS
Exploits1References2
Cvelist
Cvelistadded 2019/06/19 3:48 p.m.21 views

CVE-2018-18471

/api/2.0/rest/aggregator/xml in Axentra firmware, used by NETGEAR Stora, Seagate GoFlex Home, and MEDION LifeCloud, has an XXE vulnerability that can be chained with an SSRF bug to gain remote command execution as root. It can be triggered by anyone who knows the IP address of the affected device...

9.8AI score0.07707EPSS
Exploits1References2
CVE
CVEadded 2019/06/19 3:48 p.m.57 views

CVE-2018-18471

The vulnerability CVE-2018-18471 affects the endpoint /api/2.0/rest/aggregator/xml in Axentra Hipserv firmware used by NETGEAR Stora, Seagate GoFlex Home, and MEDION LifeCloud. The issue is an XXE flaw that can be chained with an SSRF bug to achieve remote command execution as root, exploitable b...

10CVSS9.7AI score0.07707EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2018/10/22 12:0 a.m.3 views

PT-2018-2497 · Medion +3 · Medion Lifecloud Nas +3

Name of the Vulnerable Software and Affected Versions: Seagate GoFlex Home affected versions not specified Medion LifeCloud NAS affected versions not specified Netgear Stora affected versions not specified Description: The issue is related to an incorrect restriction of XML links to external...

10CVSS9.4AI score0.07707EPSS
Exploits1References5
0day.today
0day.todayadded 2015/12/19 12:0 a.m.282 views

Seagate GoFlex Satellite Remote Telnet Default Password Vulnerability

Seagate GoFlex Satellite Mobile Wireless Storage devices contain a hardcoded backdoor account. An attacker could use this account to remotely tamper with the underlying operating system when Telnet is enabled. Title: Seagate GoFlex Satellite Remote Telnet Default Password Publication URL:...

10CVSS9.1AI score0.04154EPSS
Exploits2
KoreLogic Security
KoreLogic Securityadded 2015/12/18 12:0 a.m.708 views

Seagate GoFlex Satellite Remote Telnet Default Password

Vulnerability Details Affected Vendor: Seagate Affected Product: GoFlex Satellite Affected Version: 1.3.7 Platform: Embedded Linux CWE Classification: CWE-288: Authentication Bypass Using an Alternate Path or Channel; CWE-798: Use of Hard-coded Credentials Impact: Remote Administration Attack...

10CVSS9.1AI score0.04154EPSS
Exploits2Affected Software1
Packet Storm
Packet Stormadded 2015/11/15 12:0 a.m.20 views

Seagate GoFlex Remote Shell

I have been scanning some ranges in my free time and came across a Seagate GoFlex Home Network Storage System which my scanner flagged as being vulnerable to shellshock but getting a remote shell was no easy task "for me anyway". I ended up having to build a payload with msfvenom and doing the...

0.1AI score
Exploits0
Rows per page
Query Builder