CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-22991

A malicious user on the same LAN could use DNS spoofing followed by a command injection attack to trick a NAS device into loading through an unsecured HTTP call. Addressed this vulnerability by disabling checks for internet connectivity using HTTP.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 8.3

References

Products affected by CVE-2022-22991

Westerndigital » My Cloud » Version: N/A

cpe:2.3:h:westerndigital:my_cloud:-
Westerndigital » My Cloud Dl2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_dl2100:-
Westerndigital » My Cloud Dl4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_dl4100:-
Westerndigital » My Cloud Ex2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex2100:-
Westerndigital » My Cloud Ex2 Ultra » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex2_ultra:-
Westerndigital » My Cloud Ex4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex4100:-
Westerndigital » My Cloud Mirror Gen 2 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_mirror_gen_2:-
Westerndigital » My Cloud Pr2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_pr2100:-
Westerndigital » My Cloud Pr4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_pr4100:-
Westerndigital » Wd Cloud » Version: N/A

cpe:2.3:h:westerndigital:wd_cloud:-
Westerndigital » My Cloud Os » Version: N/A

cpe:2.3:o:westerndigital:my_cloud_os:-
Westerndigital » My Cloud Os » Version: 5.02.104

cpe:2.3:o:westerndigital:my_cloud_os:5.02.104
Westerndigital » My Cloud Os » Version: 5.03.103

cpe:2.3:o:westerndigital:my_cloud_os:5.03.103
Westerndigital » My Cloud Os » Version: 5.04.114

cpe:2.3:o:westerndigital:my_cloud_os:5.04.114
Westerndigital » My Cloud Os » Version: 5.05.111

cpe:2.3:o:westerndigital:my_cloud_os:5.05.111
Westerndigital » My Cloud Os » Version: 5.06.115

cpe:2.3:o:westerndigital:my_cloud_os:5.06.115
Westerndigital » My Cloud Os » Version: 5.07.118

cpe:2.3:o:westerndigital:my_cloud_os:5.07.118
Westerndigital » My Cloud Os » Version: 5.08.115

cpe:2.3:o:westerndigital:my_cloud_os:5.08.115
Westerndigital » My Cloud Os » Version: 5.09.115

cpe:2.3:o:westerndigital:my_cloud_os:5.09.115
Westerndigital » My Cloud Os » Version: 5.10.122

cpe:2.3:o:westerndigital:my_cloud_os:5.10.122
Westerndigital » My Cloud Os » Version: 5.11.112

cpe:2.3:o:westerndigital:my_cloud_os:5.11.112
Westerndigital » My Cloud Os » Version: 5.12.108

cpe:2.3:o:westerndigital:my_cloud_os:5.12.108
Westerndigital » My Cloud Os » Version: 5.13.115

cpe:2.3:o:westerndigital:my_cloud_os:5.13.115
Westerndigital » My Cloud Os » Version: 5.14.105

cpe:2.3:o:westerndigital:my_cloud_os:5.14.105
Westerndigital » My Cloud Os » Version: 5.15.106

cpe:2.3:o:westerndigital:my_cloud_os:5.15.106
Westerndigital » My Cloud Os » Version: 5.16.105

cpe:2.3:o:westerndigital:my_cloud_os:5.16.105
Westerndigital » My Cloud Os » Version: 5.17.107

cpe:2.3:o:westerndigital:my_cloud_os:5.17.107
Westerndigital » My Cloud Os » Version: 5.18.117

cpe:2.3:o:westerndigital:my_cloud_os:5.18.117

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-22991

Products

Pricing

Contact Us