Western digital mycloud nas
This hub aggregates every CVE we track for Western digital mycloud nas, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
7
CVEs tracked
6
Critical
0
High
0
In CISA KEV
Severity distribution
CRITICAL6MEDIUM1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 7 most recently published vulnerabilities affecting Western digital mycloud nas.
- CVE-2022-29844Western Digital My Cloud OS 5 arbitrary file read and write vulnerability via ftp6.7
- CVE-2020-27159Addressed remote code execution vulnerability in DsdkProxy.php due to insufficient sanitization and insufficient validation of user input in Western Digital My Cloud NAS devices prior to 5.04.1149.8
- CVE-2020-27158Addressed remote code execution vulnerability in cgi_api.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04.114.9.8
- CVE-2020-27160Addressed remote code execution vulnerability in AvailableApps.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04.114 (issue 3 of 3).9.8
- CVE-2020-12830Addressed multiple stack buffer overflow vulnerabilities that could allow an attacker to carry out escalation of privileges through unauthorized remote code execution in Western Digital My Cloud de...9.8
- CVE-2016-10107Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11.142 index.php page via a modified Cookie header.9.8
- CVE-2016-10108Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11.142 /web/google_analytics.php URL via a modified arg parameter in the POST data.9.8
Product normalization is registry-driven with AI assist and human review. How it works