Lucene search

CVE-2021-36225

🗓️ 06 Feb 2023 14:08:15Reported by mitreType

Western Digital My Cloud devices allow REST API access by low-privileged accounts

Reporter	Title	Published	Views	Family All 4
Prion	Information disclosure	6 Feb 202314:15	–	prion
Cvelist	CVE-2021-36225	6 Feb 202300:00	–	cvelist
NVD	CVE-2021-36225	6 Feb 202314:15	–	nvd
OpenVAS	Western Digital My Cloud PR4100 < 5.02.104 Multiple Vulnerabilities (Jul 2021)	5 Jul 202300:00	–	openvas

Nvd

Node

westerndigital my_cloud_osRange<5.02.104

AND

westerndigital my_cloud_pr4100Match-

Source	Link
github	www.github.com/pedrib/PoC/blob/master/advisories/Pwn2Own/Tokyo_2020/weekend_destroyer/weekend_destroyer.md
krebsonsecurity	www.krebsonsecurity.com/2021/07/another-0-day-looms-for-many-western-digital-users/
youtube	www.youtube.com/watch

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Feb 2023 14:15Current

8.8High risk

Vulners AI Score8.8

CVSS38.8

EPSS0.00066

CWE-862