Unrestricted file upload vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 126.96.36.199 allows remote attackers to execute arbitrary code by uploading a file to /media/sda2 during a Wi-Fi session.
Reference Links(if available):
CVSS Score (if available)
v2: / HIGHAV:A/AC:L/Au:N/C:C/I:C/A:C
v3: / HIGHCVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H