Western Digital My Cloud Authentication Bypass Vulnerability
This content has been archived
This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk
Summary
Threat details
The researchers found a command in a Common Gateway Interface module that starts a valid admin session tied to the user's IP address. If an attacker invokes this command, they can then ensure that subsequent commands are authorised by sending a username=admin cookie within the HTTP request.
Remote exploitation of this vulnerability is possible on devices with the Dashboard Cloud Access feature configured to allow remote access. The default settings do not enable remote access.
Threat updates
| Date | Update |
|---|---|
| 27 Sep 2018 |
Western Digital has now released updated firmware that addresses this vulnerability. Users and administrators are encouraged to review the support article and apply the relevant updates. For further information relating to this vulnerability, see CVE-2018-17153. |
Remediation steps
| Type | Step |
|---|---|
|
Western Digital has now released updated firmware that addresses this vulnerability. Users and administrators are encouraged to review the support article and apply the relevant updates. For further information relating to this vulnerability, see CVE-2018-17153. |
CVE Vulnerabilities
Last edited: 17 February 2020 12:57 pm