4 matches found
CVE-2022-29841
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability that was caused by a command that read files from a privileged location and created a system command without sanitizing the read data. This command could be triggered by an attacker remotely to...
CVE-2022-29841
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability that was caused by a command that read files from a privileged location and created a system command without sanitizing the read data. This command could be triggered by an attacker remotely to...
CVE-2022-29841 OS Command Injection vulnerability in Western Digital My Cloud devices
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability that was caused by a command that read files from a privileged location and created a system command without sanitizing the read data. This command could be triggered by an attacker remotely to...
CVE-2022-29841
CVE-2022-29841 is an OS Command Injection affecting Western Digital My Cloud OS 5 prior to 5.26.119. The flaw arises from a command that reads files from a privileged location and creates a system command without proper sanitization, enabling remote code execution and a reverse shell when exploit...