Security expert found more than 33000 Seagates GoFlex Home network-attached storage (NAS) devices vulnerable exposed online. Seagate has patched several vulnerabilities in several of its products, but unfortunately, some flaws remain unpatched. The company doesn’t plan on fixing the remaining issue related to the use of SSLv2 and SSLv3, which expose the users to MiTM attacks, including DROWN and POODLE. The expert also discovered an XSS in the seagateshare.com website that could be exploited by an attacker to execute malicious code.”]
Source: https://securityaffairs.co/wordpress/68107/hacking/seagates-goflex-home-flaws.html