Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2022-36331

🗓️ 12 Jun 2023 17:57:51Reported by WDC PSIRTType 
cve
 cve🔗 web.nvd.nist.gov👁 48 Views

Vulnerability in Western Digital My Cloud and SanDisk ibi device

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
CNNVD		多款Western Digital产品和SanDisk ibi 安全漏洞
12 Jun 202300:00
cnnvd
Cvelist		CVE-2022-36331 Impersonation attack causing an Authentication Bypass on Western Digital devices
12 Jun 202317:57
cvelist
EUVD		EUVD-2022-39047
3 Oct 202520:07
euvd
NVD		CVE-2022-36331
12 Jun 202318:15
nvd
OpenVAS		Western Digital My Cloud Multiple Products 5.x < 5.25.132 Authentication Bypass Vulnerability (WDC-22020)
2 Jan 202300:00
openvas
Prion		Code injection
12 Jun 202318:15
prion
Positive Technologies		PT-2023-3277 · Sandisk +1 · Sandisk Ibi +3
23 Mar 202300:00
ptsecurity
RedhatCVE		CVE-2022-36331
5 Feb 202522:42
redhatcve
Vulnrichment		CVE-2022-36331 Impersonation attack causing an Authentication Bypass on Western Digital devices
12 Jun 202317:57
vulnrichment
Zero Day Initiative		(Pwn2Own) Western Digital MyCloud PR4100 Information Disclosure Vulnerability
8 Jun 202300:00
zdi
Rows per page
NVD
Node
westerndigitalmy_cloud_pr2100_firmwareRange<5.25.132
AND
westerndigitalmy_cloud_pr2100Match-
Node
westerndigitalmy_cloud_pr4100_firmwareRange<5.25.132
AND
westerndigitalmy_cloud_pr4100Match-
Node
westerndigitalmy_cloud_ex4100_firmwareRange<5.25.132
AND
westerndigitalmy_cloud_ex4100Match-
Node
westerndigitalmy_cloud_ex2_ultra_firmwareRange<5.25.132
AND
westerndigitalmy_cloud_ex2_ultraMatch-
Node
westerndigitalmy_cloud_mirror_g2_firmwareRange<5.25.132
AND
westerndigitalmy_cloud_mirror_g2Match-
Node
westerndigitalmy_cloud_dl2100_firmwareRange<5.25.132
AND
westerndigitalmy_cloud_dl2100Match-
Node
westerndigitalmy_cloud_dl4100_firmwareRange<5.25.132
AND
westerndigitalmy_cloud_dl4100Match-
Node
westerndigitalmy_cloud_ex2100_firmwareRange<5.25.132
AND
westerndigitalmy_cloud_ex2100Match-
Node
westerndigitalmy_cloud_home_firmwareRange<8.13.1-102
AND
westerndigitalmy_cloud_homeMatch-
Node
westerndigitalmy_cloud_home_duo_firmwareRange<8.13.1-102
AND
westerndigitalmy_cloud_home_duoMatch-
Node
westerndigitalsandisk_ibi_firmwareRange<8.13.1-102
AND
westerndigitalsandisk_ibiMatch-
Node
westerndigitalmy_cloud_firmwareRange<5.25.132
AND
westerndigitalmy_cloudMatch-
[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux"
    ],
    "product": "My Cloud OS 5",
    "vendor": "Western Digital",
    "versions": [
      {
        "lessThan": "5.25.132",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux"
    ],
    "product": "My Cloud Home and My Cloud Home Duo",
    "vendor": "Western Digital",
    "versions": [
      {
        "lessThan": " 8.13.1-102",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux"
    ],
    "product": "ibi",
    "vendor": "SanDisk",
    "versions": [
      {
        "lessThan": " 8.13.1-102",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 07:12Current
7.9High risk
Vulners AI Score7.9
CVSS 3.17.5 - 10
EPSS0.0032
SSVC
CWE-290
cve-2022-36331vulnerabilitywestern digitalmy cloudsandisk ibiimpersonation attackauthentication
48