44 matches found
EUVD-2022-39045
Malicious code in bioql PyPI...
EUVD-2022-39046
Malicious code in bioql PyPI...
EUVD-2023-26931
Malicious code in bioql PyPI...
EUVD-2022-39042
Malicious code in bioql PyPI...
CVE-2023-22819
An uncontrolled resource consumption vulnerability issue that could arise by sending crafted requests to a service to consume a large amount of memory, eventually resulting in the service being stopped and restarted was discovered in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk ibi a...
CVE-2022-36329
An improper privilege management issue that could allow an attacker to cause a denial of service over the OTA mechanism was discovered in Western Digital My Cloud Home, My Cloud Home Duo and SanDisk ibi devices.This issue affects My Cloud Home and My Cloud Home Duo: before 9.4.0-191; ibi: before...
The vulnerabilities of the My Cloud OS, cloud storage services My Cloud Home and My Cloud Home Duo, as well as SanDisk iBI, are related to insufficiently checked incoming requests. This allows attackers to perform SSRF attacks.
The vulnerabilities of the My Cloud OS for network storage devices, as well as the My Cloud Home and My Cloud Home Duo cloud storage services, and the SanDisk iBeacon device, are related to insufficiently checked incoming requests. Exploiting these vulnerabilities can allow attackers to execute...
The vulnerabilities of the operating systems of network storage devices My Cloud OS, cloud storage services My Cloud Home, and My Cloud Home Duo, as well as SanDisk iBI, are related to uncontrolled resource consumption. This allows attackers to cause service interruptions.
The vulnerabilities of the My Cloud OS, My Cloud Home, and My Cloud Home Duo network storage systems, as well as the SanDisk iBI device, are related to uncontrolled resource consumption. Exploiting these vulnerabilities can allow an attacker to cause service interruptions...
CVE-2023-22819
CVE-2023-22819 describes an uncontrolled resource consumption (memory exhaustion) vulnerability in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk ibi, and Western Digital My Cloud OS 5 devices. The issue allows crafted requests to a service over the network, potentially stopping the se...
Western Digital Security Vulnerabilities in Multiple Products
Western Digital My Cloud is a personal cloud storage device.Western Digital My Cloud Home is an easy-to-use personal cloud storage device.SanDisk ibi is a smart photo manager and media storage drive from SanDisk Corporation. SanDisk ibi and others are products of SanDisk Corporation, USA.SanDisk...
PT-2024-1673 · Western Digital +1 · Western Digital My Cloud Os 5 +2
Name of the Vulnerable Software and Affected Versions: Western Digital My Cloud Home versions before 9.5.1-104 Western Digital My Cloud Home Duo versions before 9.5.1-104 SanDisk ibi versions before 9.5.1-104 Western Digital My Cloud OS 5 versions before 5.27.161 Description: An uncontrolled...
PT-2024-1674 · Western Digital · My Cloud Home Duo +3
Name of the Vulnerable Software and Affected Versions: My Cloud OS versions prior to 5.27.161 My Cloud Home version prior to 9.5.1-104 My Cloud Home Duo version prior to 9.5.1-104 SanDisk ibi version prior to 9.5.1-104 Description: The issue is related to a server-side request forgery SSRF...
The vulnerability of operating systems for network storage devices My Cloud OS, cloud storage services My Cloud Home and My Cloud Home Duo, as well as SanDisk iBI, stems from incorrect path name restrictions for access-controlled directories. This allows attackers to execute arbitrary code.
The vulnerability of the My Cloud OS, the cloud storage services My Cloud Home and My Cloud Home Duo, as well as the SanDisk iBeacon, is related to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability could allow a remote attacker to execute arbitrar...
CVE-2022-36331 Impersonation attack causing an Authentication Bypass on Western Digital devices
Western Digital My Cloud, My Cloud Home, My Cloud Home Duo, and SanDisk ibi devices were vulnerable to an impersonation attack that could allow an unauthenticated attacker to gain access to user data. This issue affects My Cloud OS 5 devices: before 5.25.132; My Cloud Home and My Cloud Home Duo:...
多款Western Digital产品和SanDisk ibi 安全漏洞
Western Digital My Cloud and others are products of Western Digital, Inc.Western Digital My Cloud is a personal cloud storage device.Western Digital My Cloud Home is an easy-to-use personal cloud storage device.Western Digital My Cloud Home Duo is an easy-to-use personal cloud storage...
CVE-2022-36327
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could allow an attacker to write files to locations with certain critical filesystem types leading to remote code execution was discovered in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk i...
CVE-2022-36326
An uncontrolled resource consumption vulnerability issue that could arise by sending crafted requests to a service to consume a large amount of memory, eventually resulting in the service being stopped and restarted was discovered in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk ibi a...
Code injection
An uncontrolled resource consumption vulnerability issue that could arise by sending crafted requests to a service to consume a large amount of memory, eventually resulting in the service being stopped and restarted was discovered in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk ibi a...
Path traversal
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could allow an attacker to write files to locations with certain critical filesystem types leading to remote code execution was discovered in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk i...
CVE-2022-36327 Path traversal vulnerability leading to an arbitrary file write in Western Digital devices
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could allow an attacker to write files to locations with certain critical filesystem types leading to remote code execution was discovered in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk i...