Medium severity5.1NVD Advisory· Published May 10, 2023· Updated Jun 17, 2026
CVE-2022-29840
CVE-2022-29840
Description
Server-Side Request Forgery (SSRF) vulnerability that could allow a rogue server on the local network to modify its URL to point back to the loopback adapter was addressed in Western Digital My Cloud OS 5 devices. This could allow the URL to exploit other vulnerabilities on the local server.This issue affects My Cloud OS 5 devices before 5.26.202.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <5.26.202
- Western Digital/My Cloud OS 5v5Range: 0
Patches
Vulnerability mechanics
References
1- www.westerndigital.com/support/product-security/wdc-23006-my-cloud-firmware-version-5-26-202nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.