Vulnerabilities > Westerndigital > MY Cloud EX2 Ultra Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-06-12 CVE-2022-36331 Authentication Bypass by Spoofing vulnerability in Westerndigital products
Western Digital My Cloud, My Cloud Home, My Cloud Home Duo, and SanDisk ibi devices were vulnerable to an impersonation attack that could allow an unauthenticated attacker to gain access to user data. This issue affects My Cloud OS 5 devices: before 5.25.132; My Cloud Home and My Cloud Home Duo: before 8.13.1-102; SanDisk ibi: before 8.13.1-102.
network
low complexity
westerndigital CWE-290
7.5
2019-04-24 CVE-2019-9950 Weak Password Requirements vulnerability in Westerndigital products
Western Digital My Cloud, My Cloud Mirror Gen2, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, My Cloud DL4100, My Cloud PR2100 and My Cloud PR4100 firmware before 2.31.174 is affected by an authentication bypass vulnerability.
network
low complexity
westerndigital CWE-521
7.5