VYPR

My Cloud OS 5

by Westerndigital

CVEs (24)

  • CVE-2023-22814CriJul 1, 2023
    risk 0.65cvss 10.0epss 0.01

    An authentication bypass issue via spoofing was discovered in the token-based authentication mechanism that could allow an attacker to carry out an impersonation attack. This issue affects My Cloud OS 5 devices: before 5.26.202.

  • CVE-2022-36331CriJun 12, 2023
    risk 0.65cvss 10.0epss 0.01

    Western Digital My Cloud, My Cloud Home, My Cloud Home Duo, and SanDisk ibi devices were vulnerable to an impersonation attack that could allow an unauthenticated attacker to gain access to user data. This issue affects My Cloud OS 5 devices: before 5.25.132; My Cloud Home and…

  • CVE-2022-29842CriMay 10, 2023
    risk 0.64cvss 9.8epss 0.02

    Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability that could allow an attacker to execute code in the context of the root user on a vulnerable CGI file was discovered in Western Digital My Cloud OS 5 devicesThis issue affects My…

  • CVE-2022-22989CriJan 13, 2022
    risk 0.64cvss 9.8epss 0.01

    My Cloud OS 5 was vulnerable to a pre-authenticated stack overflow vulnerability on the FTP service that could be exploited by unauthenticated attackers on the network. Addressed the vulnerability by adding defenses against stack overflow issues.

  • CVE-2020-29563CriDec 12, 2020
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered on Western Digital My Cloud OS 5 devices before 5.07.118. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to gain access to the device.

  • CVE-2020-28971CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie, because of insufficient validation of URI paths.

  • CVE-2020-28970CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie. (In addition, an upload endpoint could then be used by…

  • CVE-2020-28940CriDec 1, 2020
    risk 0.64cvss 9.8epss 0.04

    On Western Digital My Cloud OS 5 devices before 5.06.115, the NAS Admin dashboard has an authentication bypass vulnerability that could allow an unauthenticated user to execute privileged commands on the device.

  • CVE-2022-22994HigJan 28, 2022
    risk 0.57cvss 8.8epss 0.02

    A remote code execution vulnerability was discovered on Western Digital My Cloud devices where an attacker could trick a NAS device into loading through an unsecured HTTP call. This was a result insufficient verification of calls to the device. The vulnerability was addressed by…

  • CVE-2022-29841HigMay 10, 2023
    risk 0.52cvss 8.0epss 0.01

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that was caused by a command that read files from a privileged location and created a system command without sanitizing the read data. This command could be triggered by an…

  • CVE-2022-22993HigJan 28, 2022
    risk 0.51cvss 7.8epss 0.01

    A limited SSRF vulnerability was discovered on Western Digital My Cloud devices that could allow an attacker to impersonate a server and reach any page on the server by bypassing access controls. The vulnerability was addressed by creating a whitelist for valid parameters.

  • CVE-2022-22992HigJan 28, 2022
    risk 0.51cvss 7.8epss 0.02

    A command injection remote code execution vulnerability was discovered on Western Digital My Cloud Devices that could allow an attacker to execute arbitrary system commands on the device. The vulnerability was addressed by escaping individual arguments to shell functions coming…

  • CVE-2021-3310HigMar 10, 2021
    risk 0.51cvss 7.8epss 0.01

    Western Digital My Cloud OS 5 devices before 5.10.122 mishandle Symbolic Link Following on SMB and AFP shares. This can lead to code execution and information disclosure (by reading local files).

  • CVE-2022-29844MedJan 26, 2023
    risk 0.46cvss 6.7epss 0.36

    A vulnerability in the FTP service of Western Digital My Cloud OS 5 devices running firmware versions prior to 5.26.119 allows an attacker to read and write arbitrary files. This could lead to a full NAS compromise and would give remote execution capabilities to the attacker.

  • CVE-2023-22815MedJun 30, 2023
    risk 0.40cvss 6.2epss 0.01

    Post-authentication remote command injection vulnerability in Western Digital My Cloud OS 5 devices that could allow an attacker to execute code in the context of the root user on vulnerable CGI files. This vulnerability can only be exploited over the network and the attacker…

  • CVE-2022-29843MedJan 26, 2023
    risk 0.40cvss 6.2epss 0.01

    A command injection vulnerability in the DDNS service configuration of Western Digital My Cloud OS 5 devices running firmware versions prior to 5.26.119 allows an attacker to execute code in the context of the root user.

  • CVE-2023-22816MedJun 30, 2023
    risk 0.39cvss 6.0epss 0.01

    A post-authentication remote command injection vulnerability in a CGI file in Western Digital My Cloud OS 5 devices that could allow an attacker to build files with redirects and execute larger payloads. This issue affects My Cloud OS 5 devices: before 5.26.300.

  • CVE-2022-36328MedMay 18, 2023
    risk 0.38cvss 5.8epss 0.01

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could allow an attacker to create arbitrary shares on arbitrary directories and exfiltrate sensitive files, passwords, users and device configurations was discovered in Western…

  • CVE-2022-36327MedMay 18, 2023
    risk 0.38cvss 5.8epss 0.01

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could allow an attacker to write files to locations with certain critical filesystem types leading to remote code execution was discovered in Western Digital My Cloud Home, My Cloud…

  • CVE-2023-22817MedFeb 5, 2024
    risk 0.36cvss 5.5epss 0.00

    Server-side request forgery (SSRF) vulnerability that could allow a rogue server on the local network to modify its URL using another DNS address to point back to the loopback adapter. This could then allow the URL to exploit other vulnerabilities on the local server. This was…

Page 1 of 2