Vulnerabilities > Westerndigital > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-09-11 | CVE-2014-5876 | Cryptographic Issues vulnerability in Westerndigital WD MY Cloud 4.0.0 The WD My Cloud (aka com.wdc.wd2go) application 4.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.4 |
| 2013-07-31 | CVE-2013-5006 | Credentials Management vulnerability in Westerndigital MY NET N750, MY NET N900 and MY NET N900C main_internet.php on the Western Digital My Net N600 and N750 with firmware 1.03.12 and 1.04.16, and the N900 and N900C with firmware 1.05.12, 1.06.18, and 1.06.28, allows remote attackers to discover the cleartext administrative password by reading the "var pass=" line within the HTML source code. | 4.3 |