SeaGate STCG4000300
Approved changes feed: RSS · Atom
cpe:2.3:h:seagate:stcg4000300:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Seagate (32889122-7b7d-5a01-9d8b-1aaacddd8bee) |
|---|---|
| Product | Stcg4000300 (e53fbe5e-b07f-5e7a-bea6-5529f2d8ce45) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-6627 |
not_vulnerable | 2026-06-03 14:42:58.989380 |
Details available
The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mv_backend_launch in cirrus/application/helpers/mv_backend_helper.php by leveraging the "start" state and sending a check_device_name request.
Published: 2022-12-06T00:00:00.000Z
Updated: 2025-04-23T14:51:26.204Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.