Detections
Analytics

CVE-2015-2876

high

Description

Unrestricted file upload vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 allows remote attackers to execute arbitrary code by uploading a file to /media/sda2 during a Wi-Fi session.

References

https://www.kb.cert.org/vuls/id/GWAN-A26L3F

https://www.kb.cert.org/vuls/id/GWAN-9ZGTUH

https://www.kb.cert.org/vuls/id/903500

Details

Source: Mitre, NVD

Published: 2015-12-31

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 8.3

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00452