Lucene search

CVE-2020-29563

🗓️ 12 Dec 2020 00:12:15Reported by [email protected]Type

A NAS Admin authentication bypass vulnerability on WD My Cloud OS 5 device

Reporter	Title	Published	Views	Family All 6
CNVD	Western Digital My Cloud OS 5 Licensing Issue Vulnerability	15 Dec 202000:00	–	cnvd
CVE	CVE-2020-29563	12 Dec 202000:15	–	cve
Zero Day Initiative	(Pwn2Own) Western Digital MyCloud PR4100 nasAdmin Incorrect Authorization Authentication Bypass Vulnerability	15 Dec 202000:00	–	zdi
OpenVAS	Western Digital My Cloud Multiple Products 5.0 < 5.07.118 Authentication Bypass Vulnerability	17 Dec 202000:00	–	openvas
Prion	Authentication flaw	12 Dec 202000:15	–	prion
Cvelist	CVE-2020-29563	11 Dec 202023:50	–	cvelist

Nvd

Node

westerndigital my_cloud_os_5Range<5.07.118

AND

westerndigital my_cloud_ex2_ultraMatch-

westerndigital my_cloud_ex4100Match-

westerndigital my_cloud_mirror_gen_2Match-

westerndigital my_cloud_pr2100Match-

westerndigital my_cloud_pr4100Match-

Source	Link
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-20-1446/
westerndigital	www.westerndigital.com/support/productsecurity/wdc-20010-my-cloud-os5-firmware-5-07-118

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Dec 2020 00:15Current

9.9High risk

Vulners AI Score9.9

CVSS27.5

CVSS39.8

EPSS0.05623

CWE-287