Skip to main content

My Cloud Os 5

5 CVEs product

Monthly

CVE-2023-22813 MEDIUM This Month

A device API endpoint was missing access controls on Western Digital My Cloud OS 5 iOS and Anroid Mobile Apps, My Cloud Home iOS and Android Mobile Apps, SanDisk ibi iOS and Android Mobile Apps, My. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Google Authentication Bypass My Cloud +3
NVD
CVSS 3.1
4.3
EPSS
0.5%
CVE-2020-29563 CRITICAL Act Now

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.07.118. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass My Cloud Os 5
NVD
CVSS 3.1
9.8
EPSS
2.9%
CVE-2020-28971 CRITICAL PATCH Act Now

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass My Cloud Os 5
NVD
CVSS 3.1
9.8
EPSS
3.8%
CVE-2020-28970 CRITICAL PATCH Act Now

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass PHP My Cloud Os 5
NVD
CVSS 3.1
9.8
EPSS
3.9%
CVE-2020-28940 CRITICAL PATCH Act Now

On Western Digital My Cloud OS 5 devices before 5.06.115, the NAS Admin dashboard has an authentication bypass vulnerability that could allow an unauthenticated user to execute privileged commands on. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass My Cloud Os 5
NVD
CVSS 3.1
9.8
EPSS
3.9%
EPSS 0% CVSS 4.3
MEDIUM This Month

A device API endpoint was missing access controls on Western Digital My Cloud OS 5 iOS and Anroid Mobile Apps, My Cloud Home iOS and Android Mobile Apps, SanDisk ibi iOS and Android Mobile Apps, My. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Google +5
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.07.118. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass My Cloud Os 5
NVD
EPSS 4% CVSS 9.8
CRITICAL PATCH Act Now

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass My Cloud Os 5
NVD
EPSS 4% CVSS 9.8
CRITICAL PATCH Act Now

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass PHP My Cloud Os 5
NVD
EPSS 4% CVSS 9.8
CRITICAL PATCH Act Now

On Western Digital My Cloud OS 5 devices before 5.06.115, the NAS Admin dashboard has an authentication bypass vulnerability that could allow an unauthenticated user to execute privileged commands on. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass My Cloud Os 5
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy