CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-3206

Seagate BlackArmor NAS allows remote attackers to execute arbitrary code via the session parameter to localhost/backupmgt/localJob.php or the auth_name parameter to localhost/backupmgmt/pre_connect_check.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.931

EPSS Ranking 99.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://www.exploit-db.com/exploits/33159/
https://www.exploit-db.com/exploits/33159/

Products affected by CVE-2014-3206

Seagate » Blackarmor Nas 110 » Version: N/A

cpe:2.3:h:seagate:blackarmor_nas_110:-
Seagate » Blackarmor Nas 220 » Version: N/A

cpe:2.3:h:seagate:blackarmor_nas_220:-
Seagate » Blackarmor Nas 110 Firmware » Version: N/A

cpe:2.3:o:seagate:blackarmor_nas_110_firmware:-
Seagate » Blackarmor Nas 220 Firmware » Version: N/A

cpe:2.3:o:seagate:blackarmor_nas_220_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-3206

Products

Pricing

Contact Us