An authentication bypass issue via spoofing was discovered in the token-based authentication mechanism that could allow an attacker to carry out an impersonation attack. This issue affects My Cloud OS 5 devices: before 5.26.202.
History

Tue, 26 Nov 2024 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Westerndigital my Cloud Os 5
CPEs cpe:2.3:a:westerndigital:my_cloud_os_5:*:*:*:*:*:iphone_os:*:*
Vendors & Products Westerndigital my Cloud Os 5
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: WDC PSIRT

Published: 2023-06-30T23:05:43.130Z

Updated: 2024-11-26T16:09:14.746Z

Reserved: 2023-01-06T20:23:44.300Z

Link: CVE-2023-22814

cve-icon Vulnrichment

Updated: 2024-08-02T10:20:30.854Z

cve-icon NVD

Status : Modified

Published: 2023-07-01T00:15:09.970

Modified: 2024-11-21T07:45:28.200

Link: CVE-2023-22814

cve-icon Redhat

No data.