CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-2876

Unrestricted file upload vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 allows remote attackers to execute arbitrary code by uploading a file to /media/sda2 during a Wi-Fi session.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 62.7%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 8.3

References

Products affected by CVE-2015-2876

Lacie » Lac9000436u » Version: N/A

cpe:2.3:h:lacie:lac9000436u:-
Lacie » Lac9000464u » Version: N/A

cpe:2.3:h:lacie:lac9000464u:-
Seagate » Goflex Sattelite » Version: N/A

cpe:2.3:h:seagate:goflex_sattelite:-
Seagate » Wireless Mobile Storage » Version: N/A

cpe:2.3:h:seagate:wireless_mobile_storage:-
Seagate » Wireless Plus Mobile Storage » Version: N/A

cpe:2.3:h:seagate:wireless_plus_mobile_storage:-
Lacie » Lac9000436u Firmware » Version: 2.3.0.014

cpe:2.3:o:lacie:lac9000436u_firmware:2.3.0.014
Lacie » Lac9000464u Firmware » Version: 2.3.0.014

cpe:2.3:o:lacie:lac9000464u_firmware:2.3.0.014

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-2876

Products

Pricing

Contact Us