My cloud os
This hub aggregates every CVE we track for My cloud os, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
19
CVEs tracked
5
Critical
8
High
0
In CISA KEV
Severity distribution
HIGH8MEDIUM6CRITICAL5
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting My cloud os.
- CVE-2023-22814Authentication Bypass issue in My Cloud OS 5 devices10.0
- CVE-2023-22815Post-authentication remote command injection vulnerability on Western Digital My Cloud OS 5 devices6.2
- CVE-2023-22816Limited Post-Authentication Remote Command Injection in My Cloud Products6.0
- CVE-2022-29840Server Side Request Forgery Vulnerability in Western Digital My Cloud Devices5.1
- CVE-2022-29841OS Command Injection vulnerability in Western Digital My Cloud devices8.0
- CVE-2022-29842Command Injection Vulnerability in Western Digital My Cloud devices9.8
- CVE-2021-36225Western Digital My Cloud devices before OS5 allow REST API access by low-privileged accounts, as demonstrated by API commands for firmware uploads and installation.8.8
- CVE-2021-36224Western Digital My Cloud devices before OS5 have a nobody account with a blank password.9.8
- CVE-2021-36226Western Digital My Cloud devices before OS5 do not use cryptographically signed Firmware upgrade files.9.8
- CVE-2022-29844Western Digital My Cloud OS 5 arbitrary file read and write vulnerability via ftp6.7
- CVE-2022-29838Authentication issue with the encrypted volumes and auto mount feature in My Cloud devices4.3
- CVE-2022-29839Remote Backups Application Discloses Stored Credentials4.1
- CVE-2022-22994Insufficient Verification of Data Authenticity Remote Code Execution Vulnerability on Western Digital My Cloud devices.8.8
- CVE-2022-22992Command Injection Remote Code Execution vulnerability on Western Digital My Cloud devices.7.8
- CVE-2022-22993Limited Server-Side Request Forgery vulnerability on Western Digital My Cloud devices.7.8
Product normalization is registry-driven with AI assist and human review. How it works