Westerndigital My_cloud_expert_series_ex2
5 CVEs affecting Westerndigital My_cloud_expert_series_ex2. Latest disclosed: 2020-10-27. Critical: 5, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2020-27160 | Critical | 9.8 | 2020-10-27 | Addressed remote code execution vulnerability in AvailableApps.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04… |
CVE-2020-27159 | Critical | 9.8 | 2020-10-27 | Addressed remote code execution vulnerability in DsdkProxy.php due to insufficient sanitization and insufficient validation of user input in Western Digital My… |
CVE-2020-27158 | Critical | 9.8 | 2020-10-27 | Addressed remote code execution vulnerability in cgi_api.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04.114. |
CVE-2020-25765 | Critical | 9.8 | 2020-10-27 | Addressed remote code execution vulnerability in reg_device.php due to insufficient validation of user input.in Western Digital My Cloud Devices prior to 5.4.1… |
CVE-2020-12830 | Critical | 9.8 | 2020-10-27 | Addressed multiple stack buffer overflow vulnerabilities that could allow an attacker to carry out escalation of privileges through unauthorized remote code ex… |