CVE-2020-28970

Опубликовано: 01 дек. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie. (In addition, an upload endpoint could then be used by an authenticated administrator to upload executable PHP scripts.)

Ссылки

https://support.wdc.com/downloads.aspx?g=907&lang=en#downloads
Patch
Vendor Advisory
https://www.westerndigital.com/support/productsecurity/wdc-20009-os5-firmware-5-06-115
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1448/
Third Party Advisory
VDB Entry
https://support.wdc.com/downloads.aspx?g=907&lang=en#downloads
Patch
Vendor Advisory
https://www.westerndigital.com/support/productsecurity/wdc-20009-os5-firmware-5-06-115
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-20-1448/
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:westerndigital:my_cloud_os_5:*:*:*:*:*:*:*:*

Версия до 5.06.115 (исключая)

Одно из

cpe:2.3:h:westerndigital:my_cloud_ex2_ultra:-:*:*:*:*:*:*:*

cpe:2.3:h:westerndigital:my_cloud_ex4100:-:*:*:*:*:*:*:*

cpe:2.3:h:westerndigital:my_cloud_mirror_gen_2:-:*:*:*:*:*:*:*

cpe:2.3:h:westerndigital:my_cloud_pr2100:-:*:*:*:*:*:*:*

cpe:2.3:h:westerndigital:my_cloud_pr4100:-:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.03621

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-53g2-3hfr-5746