Insufficient access control in /api/external/7.0/system.System.get_infos in Seagate NAS OS version 4.3.15.1 allows attackers to obtain information about the NAS without authentication via empty POST requests.
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T08:30:59.730Z

Reserved: 2018-06-13T00:00:00

Link: CVE-2018-12296

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-05-13T13:29:00.337

Modified: 2024-11-21T03:44:55.830

Link: CVE-2018-12296

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.