Seagate Blackarmor Nas 220 Firmware vulnerabilities
3 known vulnerabilities affecting seagate/blackarmor_nas_220_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2013-6924P2CRITICALCVSS 9.8PoCvsg2000-2000.13312017-10-11
CVE-2013-6924 [CRITICAL] CWE-77 CVE-2013-6924: Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute arbi
Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute arbitrary commands via shell metacharacters in the ip parameter to backupmgt/getAlias.php.
nvd
CVE-2013-6922P4MEDIUMCVSS 6.8PoCvsg2000-2000.13312014-01-21
CVE-2013-6922 [MEDIUM] CWE-352 CVE-2013-6922: Multiple cross-site request forgery (CSRF) vulnerabilities in the Seagate BlackArmor NAS 220 devices
Multiple cross-site request forgery (CSRF) vulnerabilities in the Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to hijack the authentication of administrators for requests that (1) add user accounts via a crafted request to admin/access_control_user_add.php; (2) modify or (3) delete user accounts; (4) perform
nvd
CVE-2013-6923P4MEDIUMCVSS 4.3PoCvsg2000-2000.13312014-01-09
CVE-2013-6923 [MEDIUM] CWE-79 CVE-2013-6923: Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220 devices with firmw
Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to inject arbitrary web script or HTML via the (1) fullname parameter to admin/access_control_user_edit.php or (2) workname parameter to admin/network_workgroup_domain.php.
nvd