Unrated severityNVD Advisory· Published Mar 25, 2022· Updated Nov 3, 2025
Western Digital My Cloud OS 5 and My Cloud Home Unauthenticated Arbitrary File Write Vulnerability in Netatalk
CVE-2022-22995
Description
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- osv-coords2 versionspkg:rpm/suse/netatalk&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/netatalk&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
< 3.1.0-3.22.1+ 1 more
- (no CPE)range: < 3.1.0-3.22.1
- (no CPE)range: < 3.1.0-3.22.1
- Western Digital/My Cloudv5Range: My Cloud OS 5
- Western Digital/My Cloud Homev5Range: My Cloud Home
Patches
Vulnerability mechanics
References
6- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/55ROUJI22SHZX5EM23QAILZHI67EZQKW/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T5CZZLFOTUP3QYHGHSDUNENGSLPJ6KGO/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XO34FWOIJI6V6PH2XY52WNBBARVWPJG2/mitrevendor-advisory
- security.gentoo.org/glsa/202311-02mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2024/01/msg00000.htmlmitremailing-list
- www.westerndigital.com/support/product-security/wdc-22005-netatalk-security-vulnerabilitiesmitre
News mentions
0No linked articles in our index yet.