VYPR
High severity8.8NVD Advisory· Published Dec 31, 2015· Updated Jun 17, 2026

CVE-2015-2876

CVE-2015-2876

Description

Unrestricted file upload vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 allows remote attackers to execute arbitrary code by uploading a file to /media/sda2 during a Wi-Fi session.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • cpe:2.3:h:seagate:goflex_sattelite:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:seagate:goflex_sattelite:*:*:*:*:*:*:*:*
    • (no CPE)range: <3.4.1.105
  • cpe:2.3:h:seagate:wireless_mobile_storage:*:*:*:*:*:*:*:*
  • cpe:2.3:h:seagate:wireless_plus_mobile_storage:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:seagate:wireless_plus_mobile_storage:*:*:*:*:*:*:*:*
    • (no CPE)range: <3.4.1.105
  • cpe:2.3:o:lacie:lac9000436u_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:lacie:lac9000436u_firmware:*:*:*:*:*:*:*:*range: <=2.3.0.014
    • cpe:2.3:o:lacie:lac9000464u_firmware:*:*:*:*:*:*:*:*range: <=2.3.0.014
  • Lacie/FUELllm-fuzzy
    Range: <3.4.1.105

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.