CVE-2018-9074
Iomega and LenovoEMC NAS Web UI Vulnerabilities
For some Iomega, Lenovo, LenovoEMC NAS devices versions 4.1.402.34662 and earlier, the file upload functionality of the Content Explorer application is vulnerable to path traversal. As a result, users can upload files anywhere on the device's operating system as the root user.
Affected products
Lenovo Group LTD · EZ Media and Backup CenterLenovo Group LTD · Iomega StorCenterLenovo Group LTD · LenovoEMCWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →