Vulnerability Description
The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mv_backend_launch in cirrus/application/helpers/mv_backend_helper.php by leveraging the "start" state and sending a check_device_name request.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Seagate | Stcg2000300 Firmware | - |
| Seagate | Stcg2000300 | - |
| Seagate | Stcg3000300 Firmware | - |
| Seagate | Stcg3000300 | - |
| Seagate | Stcg4000300 Firmware | - |
| Seagate | Stcg4000300 | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/172590/Seagate-Central-Storage-2015.0916-Us
- https://github.com/rapid7/metasploit-framework/pull/12844ExploitIssue TrackingThird Party Advisory
- https://pentest.blog/advisory-seagate-central-storage-remote-code-execution/ExploitThird Party Advisory
- https://www.invictuseurope.com/blog/Broken Link
- http://packetstormsecurity.com/files/172590/Seagate-Central-Storage-2015.0916-Us
- https://github.com/rapid7/metasploit-framework/pull/12844ExploitIssue TrackingThird Party Advisory
- https://pentest.blog/advisory-seagate-central-storage-remote-code-execution/ExploitThird Party Advisory
- https://www.invictuseurope.com/blog/Broken Link
FAQ
What is CVE-2020-6627?
CVE-2020-6627 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mv_backend_launch in cirrus/application/helpers/mv_backend_helpe...
How severe is CVE-2020-6627?
CVE-2020-6627 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-6627?
Check the references section above for vendor advisories and patch information. Affected products include: Seagate Stcg2000300 Firmware, Seagate Stcg2000300, Seagate Stcg3000300 Firmware, Seagate Stcg3000300, Seagate Stcg4000300 Firmware.