Out of Bounds Write Vulnerability in Seagate's openSeaChest Software
CVE-2026-10717

1.8LOW

Key Information:

Status
Vendor: CVE Published:; 2 June 2026

What is CVE-2026-10717?

The Seagate openSeaChest software version 25.05.3 has a vulnerability that allows for out of bounds write and read operations. This occurs when processing defect information from SCSI devices, particularly when handling very large defect lists. Affected systems may be compromised by a faulty drive or a specially crafted SCSI device response, potentially leading to unintended memory access and security risks. Users are advised to review security advisories and ensure they are utilizing the latest updates.

References

https://www.seagate.com/product-security/#security-adviso...

https://www.seagate.com/support/software/seachest/

CVSS V4

Score:

1.8

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2026
Vulnerability Reserved
Jun 2, 2026

CVE-2026-10717 Data

JSON