What is CVE-2018-5347?

CVE-2018-5347 is a vulnerability in N/a. Published 2018-01-12.

Is CVE-2018-5347 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2018-5347

Seagate Media Server in Seagate Personal Cloud has unauthenticated command injection in the uploadTelemetry and getLogs functions in views.py because .psp URLs are handled by the fastcgi.server component and shell metacharacters are mishan…

EPSS: 0.542 (98.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cvemon

References

43659 (exploit, x_refsource_EXPLOIT-DB)
blogs.securiteam.com/index.php/archives/3548 (x_refsource_MISC)

Frequently asked questions

What is CVE-2018-5347?: CVE-2018-5347 is a vulnerability in N/a. Published 2018-01-12.
Is CVE-2018-5347 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.