Path Traversal Vulnerability on Seagate and LaCie Wireless Storage Devices

Path Traversal Vulnerability on Seagate and LaCie Wireless Storage Devices

CVE-2015-2875 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

Absolute path traversal vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 allows remote attackers to read arbitrary files via a full pathname in a download request during a Wi-Fi session.

Learn more about our Mobile App Penetration Testing.