CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-29840

Server-Side Request Forgery (SSRF) vulnerability that could allow a rogue server on the local network to modify its URL to point back to the loopback adapter was addressed in Western Digital My Cloud OS 5 devices. This could allow the URL to exploit other vulnerabilities on the local server.This issue affects My Cloud OS 5 devices before 5.26.202.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.6%

CVSS Severity

CVSS v3 Score 5.1

References

Products affected by CVE-2022-29840

Westerndigital » My Cloud » Version: N/A

cpe:2.3:h:westerndigital:my_cloud:-
Westerndigital » My Cloud Dl2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_dl2100:-
Westerndigital » My Cloud Dl4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_dl4100:-
Westerndigital » My Cloud Ex2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex2100:-
Westerndigital » My Cloud Ex2 Ultra » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex2_ultra:-
Westerndigital » My Cloud Ex4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex4100:-
Westerndigital » My Cloud Mirror G2 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_mirror_g2:-
Westerndigital » My Cloud Pr2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_pr2100:-
Westerndigital » My Cloud Pr4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_pr4100:-
Westerndigital » Wd Cloud » Version: N/A

cpe:2.3:h:westerndigital:wd_cloud:-
Westerndigital » My Cloud Os » Version: 5.02.104

cpe:2.3:o:westerndigital:my_cloud_os:5.02.104
Westerndigital » My Cloud Os » Version: 5.03.103

cpe:2.3:o:westerndigital:my_cloud_os:5.03.103
Westerndigital » My Cloud Os » Version: 5.04.114

cpe:2.3:o:westerndigital:my_cloud_os:5.04.114
Westerndigital » My Cloud Os » Version: 5.05.111

cpe:2.3:o:westerndigital:my_cloud_os:5.05.111
Westerndigital » My Cloud Os » Version: 5.06.115

cpe:2.3:o:westerndigital:my_cloud_os:5.06.115
Westerndigital » My Cloud Os » Version: 5.07.118

cpe:2.3:o:westerndigital:my_cloud_os:5.07.118
Westerndigital » My Cloud Os » Version: 5.08.115

cpe:2.3:o:westerndigital:my_cloud_os:5.08.115
Westerndigital » My Cloud Os » Version: 5.09.115

cpe:2.3:o:westerndigital:my_cloud_os:5.09.115
Westerndigital » My Cloud Os » Version: 5.10.122

cpe:2.3:o:westerndigital:my_cloud_os:5.10.122
Westerndigital » My Cloud Os » Version: 5.11.112

cpe:2.3:o:westerndigital:my_cloud_os:5.11.112
Westerndigital » My Cloud Os » Version: 5.12.108

cpe:2.3:o:westerndigital:my_cloud_os:5.12.108
Westerndigital » My Cloud Os » Version: 5.13.115

cpe:2.3:o:westerndigital:my_cloud_os:5.13.115
Westerndigital » My Cloud Os » Version: 5.14.105

cpe:2.3:o:westerndigital:my_cloud_os:5.14.105
Westerndigital » My Cloud Os » Version: 5.15.106

cpe:2.3:o:westerndigital:my_cloud_os:5.15.106
Westerndigital » My Cloud Os » Version: 5.16.105

cpe:2.3:o:westerndigital:my_cloud_os:5.16.105
Westerndigital » My Cloud Os » Version: 5.17.107

cpe:2.3:o:westerndigital:my_cloud_os:5.17.107
Westerndigital » My Cloud Os » Version: 5.18.117

cpe:2.3:o:westerndigital:my_cloud_os:5.18.117
Westerndigital » My Cloud Os » Version: 5.19.117

cpe:2.3:o:westerndigital:my_cloud_os:5.19.117
Westerndigital » My Cloud Os » Version: 5.20.113

cpe:2.3:o:westerndigital:my_cloud_os:5.20.113
Westerndigital » My Cloud Os » Version: 5.21.104

cpe:2.3:o:westerndigital:my_cloud_os:5.21.104
Westerndigital » My Cloud Os » Version: 5.22.113

cpe:2.3:o:westerndigital:my_cloud_os:5.22.113
Westerndigital » My Cloud Os » Version: 5.23.114

cpe:2.3:o:westerndigital:my_cloud_os:5.23.114
Westerndigital » My Cloud Os » Version: 5.24.108

cpe:2.3:o:westerndigital:my_cloud_os:5.24.108
Westerndigital » My Cloud Os » Version: 5.25.132

cpe:2.3:o:westerndigital:my_cloud_os:5.25.132
Westerndigital » My Cloud Os » Version: 5.26.119

cpe:2.3:o:westerndigital:my_cloud_os:5.26.119

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-29840

Products

Pricing

Contact Us