Security Advisory

CVE-2020-6627

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-06 00:00:00

Last updated 2025-04-23 14:51:26

Assigner mitre

State PUBLISHED

Description

The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mv_backend_launch in cirrus/application/helpers/mv_backend_helper.php by leveraging the "start" state and sending a check_device_name request.

← Browse all CVEs View on cve.org ↗