11 matches found
CVE-2019-18931
Western Digital My Cloud EX2 Ultra firmware 2.31.195 allows a Buffer Overflow with Extended Instruction Pointer EIP control via crafted GET/POST parameters...
Western Digital My Cloud Multiple Products < 5.04.114 Multiple Vulnerabilities
Multiple Western Digital My Cloud products are prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...
CVE-2019-18930
Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users including guest account to remotely execute arbitrary code via a stack-based buffer overflow. There is no size verification logic in one of functions in libscheddl.so, and downloadmgr.cgi makes it possible to enter large-sized...
CVE-2019-18931
Western Digital My Cloud EX2 Ultra firmware 2.31.195 allows a Buffer Overflow with Extended Instruction Pointer EIP control via crafted GET/POST parameters...
CVE-2019-18931
Western Digital My Cloud EX2 Ultra firmware 2.31.195 allows a Buffer Overflow with Extended Instruction Pointer EIP control via crafted GET/POST parameters...
Stack overflow
Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users including guest account to remotely execute arbitrary code via a stack-based buffer overflow. There is no size verification logic in one of functions in libscheddl.so, and downloadmgr.cgi makes it possible to enter large-sized...
CVE-2019-18929
Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users including guest accounts to remotely execute arbitrary code via a downloadmgr.cgi stack-based buffer overflow...
CVE-2019-18929
The CVE-2019-18929 entry concerns Western Digital My Cloud EX2 Ultra firmware 2.31.183, where a stack-based buffer overflow in download_mgr.cgi allows remote code execution by web users (including guest accounts). Affected component: download_mgr.cgi on the WD My Cloud EX2 Ultra platform. Root ca...
CVE-2019-18930
Summary (CVE-2019-18930): Western Digital My Cloud EX2 Ultra firmware 2.31.183 is affected by a stack-based buffer overflow that allows remote code execution via web access. The flaw stems from missing size verification in a function within libscheddl.so and the handling of large f_idx inputs in ...
CVE-2019-18931
Western Digital My Cloud EX2 Ultra firmware 2.31.195 allows a Buffer Overflow with Extended Instruction Pointer EIP control via crafted GET/POST parameters...
CVE-2019-18931
CVE-2019-18931 affects Western Digital My Cloud EX2 Ultra firmware up to 2.31.195. The issue is a buffer overflow that enables control of the Extended Instruction Pointer (EIP) via crafted GET/POST parameters. Affected firmware version is stated, but no remediation or patch version is provided in...