CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-29841

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that was caused by a command that read files from a privileged location and created a system command without sanitizing the read data. This command could be triggered by an attacker remotely to cause code execution and gain a reverse shell in Western Digital My Cloud OS 5 devices.This issue affects My Cloud OS 5: before 5.26.119.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.4%

CVSS Severity

CVSS v3 Score 8.0

References

Products affected by CVE-2022-29841

Westerndigital » My Cloud » Version: N/A

cpe:2.3:h:westerndigital:my_cloud:-
Westerndigital » My Cloud Dl2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_dl2100:-
Westerndigital » My Cloud Dl4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_dl4100:-
Westerndigital » My Cloud Ex2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex2100:-
Westerndigital » My Cloud Ex2 Ultra » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex2_ultra:-
Westerndigital » My Cloud Ex4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_ex4100:-
Westerndigital » My Cloud Mirror G2 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_mirror_g2:-
Westerndigital » My Cloud Pr2100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_pr2100:-
Westerndigital » My Cloud Pr4100 » Version: N/A

cpe:2.3:h:westerndigital:my_cloud_pr4100:-
Westerndigital » Wd Cloud » Version: N/A

cpe:2.3:h:westerndigital:wd_cloud:-
Westerndigital » My Cloud Os » Version: 5.02.104

cpe:2.3:o:westerndigital:my_cloud_os:5.02.104
Westerndigital » My Cloud Os » Version: 5.03.103

cpe:2.3:o:westerndigital:my_cloud_os:5.03.103
Westerndigital » My Cloud Os » Version: 5.04.114

cpe:2.3:o:westerndigital:my_cloud_os:5.04.114
Westerndigital » My Cloud Os » Version: 5.05.111

cpe:2.3:o:westerndigital:my_cloud_os:5.05.111
Westerndigital » My Cloud Os » Version: 5.06.115

cpe:2.3:o:westerndigital:my_cloud_os:5.06.115
Westerndigital » My Cloud Os » Version: 5.07.118

cpe:2.3:o:westerndigital:my_cloud_os:5.07.118
Westerndigital » My Cloud Os » Version: 5.08.115

cpe:2.3:o:westerndigital:my_cloud_os:5.08.115
Westerndigital » My Cloud Os » Version: 5.09.115

cpe:2.3:o:westerndigital:my_cloud_os:5.09.115
Westerndigital » My Cloud Os » Version: 5.10.122

cpe:2.3:o:westerndigital:my_cloud_os:5.10.122
Westerndigital » My Cloud Os » Version: 5.11.112

cpe:2.3:o:westerndigital:my_cloud_os:5.11.112
Westerndigital » My Cloud Os » Version: 5.12.108

cpe:2.3:o:westerndigital:my_cloud_os:5.12.108
Westerndigital » My Cloud Os » Version: 5.13.115

cpe:2.3:o:westerndigital:my_cloud_os:5.13.115
Westerndigital » My Cloud Os » Version: 5.14.105

cpe:2.3:o:westerndigital:my_cloud_os:5.14.105
Westerndigital » My Cloud Os » Version: 5.15.106

cpe:2.3:o:westerndigital:my_cloud_os:5.15.106
Westerndigital » My Cloud Os » Version: 5.16.105

cpe:2.3:o:westerndigital:my_cloud_os:5.16.105
Westerndigital » My Cloud Os » Version: 5.17.107

cpe:2.3:o:westerndigital:my_cloud_os:5.17.107
Westerndigital » My Cloud Os » Version: 5.18.117

cpe:2.3:o:westerndigital:my_cloud_os:5.18.117
Westerndigital » My Cloud Os » Version: 5.19.117

cpe:2.3:o:westerndigital:my_cloud_os:5.19.117
Westerndigital » My Cloud Os » Version: 5.20.113

cpe:2.3:o:westerndigital:my_cloud_os:5.20.113
Westerndigital » My Cloud Os » Version: 5.21.104

cpe:2.3:o:westerndigital:my_cloud_os:5.21.104
Westerndigital » My Cloud Os » Version: 5.22.113

cpe:2.3:o:westerndigital:my_cloud_os:5.22.113
Westerndigital » My Cloud Os » Version: 5.23.114

cpe:2.3:o:westerndigital:my_cloud_os:5.23.114
Westerndigital » My Cloud Os » Version: 5.24.108

cpe:2.3:o:westerndigital:my_cloud_os:5.24.108
Westerndigital » My Cloud Os » Version: 5.25.132

cpe:2.3:o:westerndigital:my_cloud_os:5.25.132

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-29841

Products

Pricing

Contact Us