Skip to main content

Blackarmor Nas 220 Firmware

3 CVEs product

Monthly

CVE-2013-6924 CRITICAL POC THREAT Emergency

Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute arbitrary commands via shell metacharacters in the ip parameter to backupmgt/getAlias.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 48.4%.

PHP Command Injection Blackarmor Nas 220 Firmware
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
48.4%
Threat
4.9
CVE-2013-6922 MEDIUM POC This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in the Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to hijack the authentication of. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF PHP Blackarmor Nas 220 Firmware Blackarmor Nas 220
NVD Exploit-DB
CVSS 2.0
6.8
EPSS
0.7%
CVE-2013-6923 MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to inject arbitrary web script or HTML via the (1). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP XSS Blackarmor Nas 220 Firmware Blackarmor Nas 220
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
5.4%
EPSS 48% 4.9 CVSS 9.8
CRITICAL POC THREAT Emergency

Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute arbitrary commands via shell metacharacters in the ip parameter to backupmgt/getAlias.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 48.4%.

PHP Command Injection Blackarmor Nas 220 Firmware
NVD Exploit-DB
EPSS 1% CVSS 6.8
MEDIUM POC This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in the Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to hijack the authentication of. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF PHP Blackarmor Nas 220 Firmware +1
NVD Exploit-DB
EPSS 5% CVSS 4.3
MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to inject arbitrary web script or HTML via the (1). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP XSS Blackarmor Nas 220 Firmware +1
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy