347 matches found
EUVD-2020-27775
The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mvbackendlaunch in cirrus/application/helpers/mvbackendhelper.php by leveraging the "start" state and sending a checkdevicename request...
CVE-2020-6627
The CVE-2020-6627 issue affects Seagate Central NAS devices STCG2000300, STCG3000300, and STCG4000300 where the web-management application is vulnerable to OS command injection via mv_backend_launch in cirrus/application/helpers/mv_backend_helper.php when in the "start" state and a check_device_n...
Seagate Media Sync Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Seagate Media Sync, a file synchronization tool, due to a failure in the Seagate Media Sync software to properly handle the transfer of data between its two processes via the named pipe MEDIAAGGREPIPE.PIP and the ability to create registry values...
PT-2022-25321 · Seagate · Seagate
Name of the Vulnerable Software and Affected Versions: Seagate affected versions not specified Description: The issue involves exploiting a Seagate service to create a SYSTEM shell. This is related to local privilege escalation exploits. There is no information provided about the estimated number...
CVE-2022-38392
Certain 5400 RPM hard drives, for laptops and other PCs in approximately 2005 and later, allow physically proximate attackers to cause a denial of service device malfunction and system crash via a resonant-frequency attack with the audio signal from the Rhythm Nation music video. A reported produ...
Hardcoded credentials
Certain 5400 RPM hard drives, for laptops and other PCs in approximately 2005 and later, allow physically proximate attackers to cause a denial of service device malfunction and system crash via a resonant-frequency attack with the audio signal from the Rhythm Nation music video. A reported produ...
Seagate STDT4000100 安全漏洞
The Seagate STDT4000100 is a mechanical hard drive from Seagate USA. A security vulnerability exists in the Seagate STDT4000100 hard drive that originates from a physical attacker being able to exploit the audio signal of the Rhythm Nation music video to perform a resonant frequency attack, which...
CVE-2022-38392
Certain 5400 RPM hard drives, for laptops and other PCs in approximately 2005 and later, allow physically proximate attackers to cause a denial of service device malfunction and system crash via a resonant-frequency attack with the audio signal from the Rhythm Nation music video. A reported produ...
PT-2022-24404
Name of the Vulnerable Software and Affected Versions Hard drives affected versions not specified Description Certain 5400 RPM hard drives, commonly found in laptops and PCs manufactured around 2005 and later, are susceptible to a denial-of-service condition. This occurs due to a resonant-frequen...
CVE-2022-38392
CVE-2022-38392 concerns certain 5400 RPM hard drives (e.g., Seagate STDT4000100) from laptops/PCs circa 2005 and later. The description documents a denial-of-service by physical proximity via a resonant-frequency attack using the Rhythm Nation audio signal, potentially causing device malfunction ...
VulnCheck KEV: CVE-2014-3206
Seagate BlackArmor NAS allows remote attackers to execute arbitrary code via the session parameter to localhost/backupmgt/localJob.php or the authname parameter to localhost/backupmgmt/preconnectcheck.php...
Seagate BlackArmor NAS RCE Vulnerability (Jul 2021)
Seagate BlackArmor NAS is prone to a remote code execution RCE vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program i...
Seagate BlackArmor NAS sg2000-2000.1331 - Command Injection Exploit
Exploit Title: Seagate BlackArmor NAS sg2000-2000.1331 - Command Injection Discovered by: Jeroen - IT Nerdbox Exploit Author: Metin Yunus Kandemir Version: sg2000-2000.1331 Vendor Homepage: https://www.seagate.com/ Software Link:...
Seagate BlackArmor NAS sg2000-2000.1331 Command Injection
Exploit Title: Seagate BlackArmor NAS sg2000-2000.1331 - Command Injection Date: 15.07.2021 Discovered by: Jeroen - IT Nerdbox Exploit Author: Metin Yunus Kandemir Version: sg2000-2000.1331 Vendor Homepage: https://www.seagate.com/ Software Link:...
Seagate BlackArmor NAS sg2000-2000.1331 - Command Injection
Exploit Title: Seagate BlackArmor NAS sg2000-2000.1331 - Command Injection Date: 15.07.2021 Discovered by: Jeroen - IT Nerdbox Exploit Author: Metin Yunus Kandemir Version: sg2000-2000.1331 Vendor Homepage: https://www.seagate.com/ Software Link:...
tableauonline.colo.seagate.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1149149 Security Researcher OakdaleHutch Helped patch 26 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting tableauonline.colo.seagate.com website and its user...
tableauonline.seagate.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1149147 Security Researcher OakdaleHutch Helped patch 26 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting tableauonline.seagate.com website and its users...
tableauonlinestg.colo.seagate.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1149146 Security Researcher OakdaleHutch Helped patch 26 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting tableauonlinestg.colo.seagate.com website and its...
tableau.testgslb.seagate.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1149145 Security Researcher OakdaleHutch Helped patch 26 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting tableau.testgslb.seagate.com website and its users...
Seagate Central Storage Remote Code Execution Vulnerability
Seagate Central Storage is a home network drive made by Seagate for home and small office use. A remote code execution vulnerability exists in Seagate Central Storage, which can be exploited by an attacker to execute code...