High severity7.5NVD Advisory· Published Dec 31, 2015· Updated Jun 17, 2026
CVE-2015-2875
CVE-2015-2875
Description
Absolute path traversal vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 allows remote attackers to read arbitrary files via a full pathname in a download request during a Wi-Fi session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:h:seagate:goflex_sattelite:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:seagate:goflex_sattelite:*:*:*:*:*:*:*:*
- (no CPE)range: <3.4.1.105
cpe:2.3:h:seagate:wireless_mobile_storage:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:seagate:wireless_mobile_storage:*:*:*:*:*:*:*:*
- (no CPE)range: <3.4.1.105
- cpe:2.3:h:seagate:wireless_plus_mobile_storage:*:*:*:*:*:*:*:*
cpe:2.3:o:lacie:lac9000436u_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:lacie:lac9000436u_firmware:*:*:*:*:*:*:*:*range: <=2.3.0.014
- cpe:2.3:o:lacie:lac9000464u_firmware:*:*:*:*:*:*:*:*range: <=2.3.0.014
Patches
Vulnerability mechanics
References
3- www.kb.cert.org/vuls/id/903500nvdThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/GWAN-9ZGTUHnvdThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/GWAN-A26L3FnvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.