CVE-2022-36331

CVSS V2 None CVSS V3 None
Description
Western Digital My Cloud, My Cloud Home, My Cloud Home Duo, and SanDisk ibi devices were vulnerable to an impersonation attack that could allow an unauthenticated attacker to gain access to user data. This issue affects My Cloud OS 5 devices: before 5.25.132; My Cloud Home and My Cloud Home Duo: before 8.13.1-102; SanDisk ibi: before 8.13.1-102.
Overview
  • CVE ID
  • CVE-2022-36331
  • Assigner
  • WDC PSIRT
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-06-12T17:57:51.994Z
  • Last Modified Date
  • 2023-06-12T17:57:51.994Z
Weakness Enumerations
CWE URL
CWE-290 http://cwe.mitre.org/data/definitions/290.html
References
Reference URL Reference Tags
https://https://www.westerndigital.com/support/product-security/wdc-22020-my-cloud-os-5-my-cloud-home-ibi-firmware-update
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2022-36331
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36331
History
Created Old Value New Value Data Type Notes
2024-06-24 18:12:47 Added to TrackCVE