CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-12427

The Western Digital WD Discovery application before 3.8.229 for MyCloud Home on Windows and macOS is vulnerable to CSRF, with impacts such as stealing data, modifying disk contents, or exhausting disk space.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.8%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://support.wdc.com/downloads.aspx?g=907&lang=en
https://www.westerndigital.com/support/productsecurity/wdc-20004-wd-discovery-cross-site-request-forgery-csrf
https://support.wdc.com/downloads.aspx?g=907&lang=en
https://www.westerndigital.com/support/productsecurity/wdc-20004-wd-discovery-cross-site-request-forgery-csrf

Products affected by CVE-2020-12427

Westerndigital » Wd Discovery » Version: 2.12.127

cpe:2.3:a:westerndigital:wd_discovery:2.12.127
Apple » Macos » Version: N/A

cpe:2.3:o:apple:macos:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12427

Products

Pricing

Contact Us