western digital corporation
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting western digital corporation.
- CVE-2025-30247An OS command injection vulnerability in user interface in Western Digital My Cloud firmware prior to 5.31.108 on NAS platforms allows remote attackers to execute arbitrary system commands via a sp...9.8
- CVE-2025-57699Western Digital Kitfox for Windows provided by Western Digital Corporation registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the sys...6.7
- CVE-2024-22170Unchecked buffer in Dynamic DNS client8.1
- CVE-2024-22169Misconfiguration in node.js causing a code execution in WD Discovery9.3
- CVE-2024-22167SanDisk PrivateAccess DLL Hijacking Vulnerability7.9
- CVE-2023-22819Uncontrolled resource consumption vulnerability in Western Digital My Cloud, My Cloud Home and SanDisk ibi products4.9
- CVE-2023-22817Server-side Request Forgery vulnerability in Western Digital My Cloud, My Cloud Home and SanDisk ibi products5.5
- CVE-2023-22818Multiple DLL Search Order hijacking Vulnerabilities in SanDisk Security Installer for Windows 7.3
- CVE-2023-22815Post-authentication remote command injection vulnerability on Western Digital My Cloud OS 5 devices6.2
- CVE-2023-22816Limited Post-Authentication Remote Command Injection in My Cloud Products6.0
- CVE-2022-36331Impersonation attack causing an Authentication Bypass on Western Digital devices10.0
- CVE-2022-36327Path traversal vulnerability leading to an arbitrary file write in Western Digital devices5.8
- CVE-2022-29841OS Command Injection vulnerability in Western Digital My Cloud devices8.0
- CVE-2021-36225Western Digital My Cloud devices before OS5 allow REST API access by low-privileged accounts, as demonstrated by API commands for firmware uploads and installation.8.8
- CVE-2021-36226Western Digital My Cloud devices before OS5 do not use cryptographically signed Firmware upgrade files.9.8