What is CVE-2018-17153?

CVE-2018-17153 is a vulnerability in N/a. Published 2018-09-18.

Is CVE-2018-17153 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2018-17153

It was discovered that the Western Digital My Cloud device before 2.30.196 is affected by an authentication bypass vulnerability. An unauthenticated attacker can exploit this vulnerability to authenticate as an admin user without needing t…

EPSS: 0.920 (99.7th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

105359 (vdb-entry)
securify.nl/nl/advisory/SFY20180102/authentication-bypass-vulnerability-in-west…
support.wdc.com/knowledgebase/answer.aspx
packetstormsecurity.com/files/173802/Western-Digital-MyCloud-Unauthenticated-Co…

Frequently asked questions

What is CVE-2018-17153?: CVE-2018-17153 is a vulnerability in N/a. Published 2018-09-18.
Is CVE-2018-17153 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.