Nas Os Security Vulnerabilities and Issues — Nas Os CVE List

Lucene search

SeagateNas Os

3 matches found

CVE•added 2019/05/13 1:29 p.m.•47 views

CVE-2018-12298

Directory Traversal in filebrowser in Seagate NAS OS 4.3.15.1 allows attackers to read files within the application's container via a URL path.

7.5CVSS7.3AI score0.00431EPSS

CVE•added 2019/05/13 1:29 p.m.•42 views

CVE-2018-12296

Insufficient access control in /api/external/7.0/system.System.get_infos in Seagate NAS OS version 4.3.15.1 allows attackers to obtain information about the NAS without authentication via empty POST requests.

7.5CVSS7.4AI score0.6508EPSS

CVE•added 2019/05/13 1:29 p.m.•39 views

CVE-2018-12301

Unvalidated URL in Download Manager in Seagate NAS OS version 4.3.15.1 allows attackers to access the loopback interface via a Download URL of 127.0.0.1 or localhost.

7.5CVSS7.4AI score0.00316EPSS