CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-29837

A path traversal vulnerability was addressed in Western Digital My Cloud Home, My Cloud Home Duo and SanDisk ibi which could allow an attacker to initiate installation of custom ZIP packages and overwrite system files. This could potentially lead to a code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.7%

CVSS Severity

CVSS v3 Score 4.7

References

Products affected by CVE-2022-29837

Westerndigital » My Cloud Home » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_home:-
Westerndigital » My Cloud Home Duo » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_home_duo:-
Westerndigital » Sandisk Ibi » Version: N/A

cpe:2.3:h:westerndigital:sandisk_ibi:-
Westerndigital » My Cloud Home Duo Firmware » Version: N/A

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:-
Westerndigital » My Cloud Home Duo Firmware » Version: 7.15.1-101

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:7.15.1-101
Westerndigital » My Cloud Home Duo Firmware » Version: 7.16.0-220

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:7.16.0-220
Westerndigital » My Cloud Home Duo Firmware » Version: 8.10.0-117

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:8.10.0-117
Westerndigital » My Cloud Home Duo Firmware » Version: 8.11.0-113

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:8.11.0-113
Westerndigital » My Cloud Home Duo Firmware » Version: 8.2.0-132

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:8.2.0-132
Westerndigital » My Cloud Home Duo Firmware » Version: 8.5.1-102

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:8.5.1-102
Westerndigital » My Cloud Home Duo Firmware » Version: 8.6.0-117

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:8.6.0-117
Westerndigital » My Cloud Home Duo Firmware » Version: 8.6.1-100

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:8.6.1-100
Westerndigital » My Cloud Home Duo Firmware » Version: 8.6.2-102

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:8.6.2-102
Westerndigital » My Cloud Home Duo Firmware » Version: 8.7.0-107

cpe:2.3:o:westerndigital:my_cloud_home_duo_firmware:8.7.0-107
Westerndigital » My Cloud Home Firmware » Version: N/A

cpe:2.3:o:westerndigital:my_cloud_home_firmware:-
Westerndigital » My Cloud Home Firmware » Version: 7.15.1-101

cpe:2.3:o:westerndigital:my_cloud_home_firmware:7.15.1-101
Westerndigital » My Cloud Home Firmware » Version: 7.16.0-220

cpe:2.3:o:westerndigital:my_cloud_home_firmware:7.16.0-220
Westerndigital » My Cloud Home Firmware » Version: 8.10.0-117

cpe:2.3:o:westerndigital:my_cloud_home_firmware:8.10.0-117
Westerndigital » My Cloud Home Firmware » Version: 8.11.0-113

cpe:2.3:o:westerndigital:my_cloud_home_firmware:8.11.0-113
Westerndigital » My Cloud Home Firmware » Version: 8.2.0-132

cpe:2.3:o:westerndigital:my_cloud_home_firmware:8.2.0-132
Westerndigital » My Cloud Home Firmware » Version: 8.5.1-102

cpe:2.3:o:westerndigital:my_cloud_home_firmware:8.5.1-102
Westerndigital » My Cloud Home Firmware » Version: 8.6.0-117

cpe:2.3:o:westerndigital:my_cloud_home_firmware:8.6.0-117
Westerndigital » My Cloud Home Firmware » Version: 8.6.1-100

cpe:2.3:o:westerndigital:my_cloud_home_firmware:8.6.1-100
Westerndigital » My Cloud Home Firmware » Version: 8.6.2-102

cpe:2.3:o:westerndigital:my_cloud_home_firmware:8.6.2-102
Westerndigital » My Cloud Home Firmware » Version: 8.7.0-107

cpe:2.3:o:westerndigital:my_cloud_home_firmware:8.7.0-107
Westerndigital » Sandisk Ibi Firmware » Version: N/A

cpe:2.3:o:westerndigital:sandisk_ibi_firmware:-
Westerndigital » Sandisk Ibi Firmware » Version: 8.10.0-117

cpe:2.3:o:westerndigital:sandisk_ibi_firmware:8.10.0-117
Westerndigital » Sandisk Ibi Firmware » Version: 8.11.0-113

cpe:2.3:o:westerndigital:sandisk_ibi_firmware:8.11.0-113

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-29837

Products

Pricing

Contact Us