Lucene search
+L

347 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:18 p.m.14 views

CVE-2022-38392

Certain 5400 RPM hard drives, for laptops and other PCs in approximately 2005 and later, allow physically proximate attackers to cause a denial of service device malfunction and system crash via a resonant-frequency attack with the audio signal from the Rhythm Nation music video. A reported produ...

5.3CVSS6.1AI score0.00394EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:30 p.m.3 views

CVE-2020-6627

The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mvbackendlaunch in cirrus/application/helpers/mvbackendhelper.php by leveraging the "start" state and sending a checkdevicename request...

9.8CVSS7.6AI score0.12453EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:11 p.m.9 views

CVE-2018-18471

/api/2.0/rest/aggregator/xml in Axentra firmware, used by NETGEAR Stora, Seagate GoFlex Home, and MEDION LifeCloud, has an XXE vulnerability that can be chained with an SSRF bug to gain remote command execution as root. It can be triggered by anyone who knows the IP address of the affected device...

10CVSS7.4AI score0.07707EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:5 a.m.8 views

CVE-2018-12296

Insufficient access control in /api/external/7.0/system.System.getinfos in Seagate NAS OS version 4.3.15.1 allows attackers to obtain information about the NAS without authentication via empty POST requests...

7.5CVSS6.7AI score0.10905EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:10 a.m.13 views

CVE-2018-12297

Cross-site scripting in API error pages in Seagate NAS OS version 4.3.15.1 allows attackers to execute JavaScript via URL path names...

6.1CVSS6.7AI score0.00692EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2024/01/03 12:0 a.m.4 views

VulnCheck KEV: CVE-2018-12296

Insufficient access control in /api/external/7.0/system.System.getinfos in Seagate NAS OS version 4.3.15.1 allows attackers to obtain information about the NAS without authentication via empty POST requests...

7.5CVSS7.1AI score0.10905EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2023/08/09 12:0 a.m.13 views

Seagate Exos X SLP Detection

Binary data seagateexosxslpdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/08/09 12:0 a.m.12 views

Seagate AssuredSAN SLP Detection

Binary data seagateassuredsanslpdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/08/09 12:0 a.m.13 views

Seagate Lyve SLP Detection

Binary data seagatelyveslpdetect.nbin...

7.3AI score
Exploits0References1
0day.today
0day.today
added 2023/05/26 12:0 a.m.325 views

Seagate Central Storage 2015.0916 - Unauthenticated Remote Command Execution Exploit

Exploit Title: Seagate Central Storage 2015.0916 - Unauthenticated Remote Command Execution Metasploit Date: Dec 9 2019 Exploit Author: Ege Balci Vendor Homepage: https://www.seagate.com/de/de/support/external-hard-drives/network-storage/seagate-central/ Version: 2015.0916 CVE : 2020-6627 This...

9.8CVSS9.2AI score0.12453EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/05/26 12:0 a.m.371 views

Seagate Central Storage 2015.0916 User Creation / Command Execution

Exploit Title: Seagate Central Storage 2015.0916 - Unauthenticated Remote Command Execution Metasploit Date: Dec 9 2019 Exploit Author: Ege Balci Vendor Homepage: https://www.seagate.com/de/de/support/external-hard-drives/network-storage/seagate-central/ Version: 2015.0916 CVE : 2020-6627 This...

9.8CVSS7.1AI score0.12453EPSS
Exploits4
Exploit DB
Exploit DB
added 2023/05/25 12:0 a.m.359 views

Seagate Central Storage 2015.0916 - Unauthenticated Remote Command Execution (Metasploit)

Exploit Title: Seagate Central Storage 2015.0916 - Unauthenticated Remote Command Execution Metasploit Date: Dec 9 2019 Exploit Author: Ege Balci Vendor Homepage: https://www.seagate.com/de/de/support/external-hard-drives/network-storage/seagate-central/ Version: 2015.0916 CVE : 2020-6627 This...

9.8CVSS9.3AI score0.12453EPSS
Exploits4
OpenVAS
OpenVAS
added 2022/12/07 12:0 a.m.10 views

Seagate Central Detection (HTTP)

HTTP based detection of Seagate Central. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.149001";...

7.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2022/12/07 12:0 a.m.12 views

Seagate Central <= 2015.0916 RCE Vulnerability

Seagate Central is prone to a remote code execution RCE vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

9.8CVSS9.9AI score0.12453EPSS
Exploits4References1
NVD
NVD
added 2022/12/06 3:15 p.m.48 views

CVE-2020-6627

The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mvbackendlaunch in cirrus/application/helpers/mvbackendhelper.php by leveraging the "start" state and sending a checkdevicename request...

9.8CVSS0.12453EPSS
Exploits4References4
Prion
Prion
added 2022/12/06 3:15 p.m.18 views

Command injection

The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mvbackendlaunch in cirrus/application/helpers/mvbackendhelper.php by leveraging the "start" state and sending a checkdevicename request...

7.5CVSS9.7AI score0.12453EPSS
Exploits4References4
Vulnrichment
Vulnrichment
added 2022/12/06 12:0 a.m.3 views

CVE-2020-6627

The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mvbackendlaunch in cirrus/application/helpers/mvbackendhelper.php by leveraging the "start" state and sending a checkdevicename request...

7.4AI score0.12453EPSS
Exploits4References4
Cvelist
Cvelist
added 2022/12/06 12:0 a.m.47 views

CVE-2020-6627

The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mvbackendlaunch in cirrus/application/helpers/mvbackendhelper.php by leveraging the "start" state and sending a checkdevicename request...

9.9AI score0.12453EPSS
Exploits4References4
CNNVD
CNNVD
added 2022/12/06 12:0 a.m.5 views

Seagate Central NAS 操作系统命令注入漏洞

Seagate Central NAS is a family of networked storage devices from Seagate. A security vulnerability exists in the Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300, which originates in the web management application that allows an attacker to exploit the "Start" state and send a...

9.8CVSS8.4AI score0.12453EPSS
Exploits4References6
Positive Technologies
Positive Technologies
added 2022/12/06 12:0 a.m.5 views

PT-2022-9051 · Seagate · Seagate Central Nas

Name of the Vulnerable Software and Affected Versions: Seagate Central NAS versions STCG2000300, STCG3000300, and STCG4000300 Description: The web-management application on the affected devices allows OS command injection via mv backend launch in cirrus/application/helpers/mv backend helper.php b...

9.8CVSS7.5AI score0.12453EPSS
Exploits4References8
Rows per page
Query Builder