Critical severity9.8NVD Advisory· Published Jan 12, 2018· Updated Jun 17, 2026

CVE-2018-5347

Description

Seagate Media Server in Seagate Personal Cloud has unauthenticated command injection in the uploadTelemetry and getLogs functions in views.py because .psp URLs are handled by the fastcgi.server component and shell metacharacters are mishandled.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Seagate/Personal Cloudllm-fuzzy

Patches

Vulnerability mechanics

References

blogs.securiteam.com/index.php/archives/3548nvdExploitThird Party Advisory
www.exploit-db.com/exploits/43659/nvdExploitThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.043
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000