Security News > 2022 > March > Western Digital fixes critical bug giving root on My Cloud NAS devices
Western Digital has fixed a critical severity vulnerability that enabled attackers to gain remote code execution with root privileges on unpatched My Cloud OS 5 devices.
This flaw is an out-of-bounds heap read/write in the Samba vfs fruit VFS module.
It can be exploited by unauthenticated threat actors in low complexity attacks targeting My Cloud devices running vulnerable firmware versions.
"This specific flaw exists within the parsing of extended attributes metadata when opening a file in smbd," the data storage company explained.
"This vulnerability can be exploited by unauthenticated users if they are allowed write access to file extended attributes."
While default configurations are exposed to attacks, threat actors need write access to a file's extended attributes.
News URL
Related news
- Critical Kubernetes Image Builder flaw gives SSH root access to VMs (source)
- Critical default credential in Kubernetes Image Builder allows SSH root access (source)
- Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk (source)
- VMware fixes critical RCE, make-me-root bugs in vCenter - for the second time (source)
- Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices (source)
- D-Link won’t fix critical flaw affecting 60,000 older NAS devices (source)
- Critical bug in EoL D-Link NAS devices now exploited in attacks (source)