Known Vulnerabilities for My Cloud Expert Series Ex2 by Westerndigital
Listed below are 5 of the newest known vulnerabilities associated with "My Cloud Expert Series Ex2" by "Westerndigital".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
More device details and information can be found at device.report here: Westerndigital My Cloud Expert Series Ex2
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-27160 | Addressed remote code execution vulnerability in AvailableApps.php that allowed escalation of privileges in Western Digital M... | 9.8 - CRITICAL | 2020-10-27 | 2021-12-10 |
| CVE-2020-27159 | Addressed remote code execution vulnerability in DsdkProxy.php due to insufficient sanitization and insufficient validation o... | 9.8 - CRITICAL | 2020-10-27 | 2021-12-02 |
| CVE-2020-27158 | Addressed remote code execution vulnerability in cgi_api.php that allowed escalation of privileges in Western Digital My Clou... | 9.8 - CRITICAL | 2020-10-27 | 2021-12-01 |
| CVE-2020-25765 | Addressed remote code execution vulnerability in reg_device.php due to insufficient validation of user input.in Western Digit... | 9.8 - CRITICAL | 2020-10-27 | 2021-12-01 |
| CVE-2020-12830 | Addressed multiple stack buffer overflow vulnerabilities that could allow an attacker to carry out escalation of privileges t... | 9.8 - CRITICAL | 2020-10-27 | 2020-11-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Westerndigital | My Cloud Expert Series Ex2 | - | All | All | All |