Loading
Cross-site scripting in filebrowser in Seagate NAS OS version 4.3.15.1 allows attackers to execute JavaScript via uploaded file names.
Use CWE-79, Seagate vendor hub and Nas Os product page to widen CVE-2018-12299 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2018-12295, CVE-2018-12301 and CVE-2018-12298 for nearby disclosures in the same product family.