Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mv_backend_launch in cirrus/application/helpers/mv_backend_helper.php by leveraging the "start" state and sending a check_device_name request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Seagate Central NAS 操作系统命令注入漏洞
Vulnerability Description
Seagate Central NAS是美国希捷(Seagate)公司的一系列网络存储设备。 Seagate Central NAS STCG2000300、STCG3000300 和 STCG4000300 存在安全漏洞,该漏洞源于Web 管理应用程序允许通过利用“开始”状态并发送 check_device_name 请求,攻击者利用该漏洞可以通过 cirrus/application/helpers/mv_backend_helper.php 中的 mv_backend_launch 注入操作系统命令
CVSS Information
N/A
Vulnerability Type
N/A