Critical severity9.8NVD Advisory· Published Jun 19, 2019· Updated Jun 17, 2026
CVE-2018-18471
CVE-2018-18471
Description
/api/2.0/rest/aggregator/xml in Axentra firmware, used by NETGEAR Stora, Seagate GoFlex Home, and MEDION LifeCloud, has an XXE vulnerability that can be chained with an SSRF bug to gain remote command execution as root. It can be triggered by anyone who knows the IP address of the affected device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Axentra/firmwaredescription
Patches
Vulnerability mechanics
References
2- www.wizcase.com/blog/hack-2018/nvdExploitThird Party Advisory
- www.axentra.com/en/nvdVendor AdvisoryURL Repurposed
News mentions
0No linked articles in our index yet.