Vulnerabilities > Westerndigital > MY Cloud Home DUO Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-05-18 CVE-2022-36327 Path Traversal vulnerability in Westerndigital products
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could allow an attacker to write files to locations with certain critical filesystem types leading to remote code execution was discovered in Western Digital My Cloud Home, My Cloud Home Duo, SanDisk ibi and Western Digital My Cloud OS 5 devices.
network
low complexity
westerndigital CWE-22
critical
9.8