Critical severity10.0NVD Advisory· Published Jun 12, 2023· Updated Jun 17, 2026
CVE-2022-36331
CVE-2022-36331
Description
Western Digital My Cloud, My Cloud Home, My Cloud Home Duo, and SanDisk ibi devices were vulnerable to an impersonation attack that could allow an unauthenticated attacker to gain access to user data. This issue affects My Cloud OS 5 devices: before 5.25.132; My Cloud Home and My Cloud Home Duo: before 8.13.1-102; SanDisk ibi: before 8.13.1-102.
Affected products
6- Range: <8.13.1-102
- Range: <5.25.132
- Range: <8.13.1-102
- Western Digital/My Cloud Home and My Cloud Home Duov5Range: 0
- Western Digital/My Cloud OS 5v5Range: 0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.