Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
westerndigital vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2020-15816
In Western Digital WD Discovery prior to 4.0.251.0, a malicious application running with standard user permissions could potentially execute code in the application's process through library injection by using DYLD environment variables.
Westerndigital Wd Discovery
6.8
CVSSv2
CVE-2020-12427
The Western Digital WD Discovery application prior to 3.8.229 for MyCloud Home on Windows and macOS is vulnerable to CSRF, with impacts such as stealing data, modifying disk contents, or exhausting disk space.
Westerndigital Wd Discovery
4.3
CVSSv2
CVE-2020-10951
Western Digital My Cloud Home and ibi devices prior to 2.2.0 allow clickjacking on sign-in pages.
Westerndigital Ibi
Westerndigital My Cloud Home
4.3
CVSSv2
CVE-2019-10705
Western Digital SanDisk X600 devices in certain configurations, a vulnerability in the access control mechanism of the drive may allow data to be decrypted without knowledge of proper authentication credentials.
Westerndigital Sandisk X600 Sd9tb8w-128g Firmware
Westerndigital Sandisk X600 Sd9tb8w-256g Firmware
Westerndigital Sandisk X600 Sd9tb8w-512g Firmware
Westerndigital Sandisk X600 Sd9tb8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9tb8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9tn8w-128g Firmware
Westerndigital Sandisk X600 Sd9tn8w-256g Firmware
Westerndigital Sandisk X600 Sd9tn8w-512g Firmware
Westerndigital Sandisk X600 Sd9tn8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9tn8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9sb8w-128g Firmware
Westerndigital Sandisk X600 Sd9sb8w-256g Firmware
Westerndigital Sandisk X600 Sd9sb8w-512g Firmware
Westerndigital Sandisk X600 Sd9sb8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9sb8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9sn8w-128g Firmware
Westerndigital Sandisk X600 Sd9sn8w-256g Firmware
Westerndigital Sandisk X600 Sd9sn8w-512g Firmware
Westerndigital Sandisk X600 Sd9sn8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9sn8w-2t00 Firmware
6.3
CVSSv2
CVE-2019-10706
Western Digital SanDisk SanDisk X300, X300s, X400, and X600 devices: The firmware update authentication method relies on a symmetric HMAC digest. The key used to validate this digest is present in a protected area of the device, and if extracted could be used to install arbitrary...
Westerndigital Sandisk X600 Sd9tb8w-128g Firmware
Westerndigital Sandisk X600 Sd9tb8w-256g Firmware
Westerndigital Sandisk X600 Sd9tb8w-512g Firmware
Westerndigital Sandisk X600 Sd9tb8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9tb8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9tn8w-128g Firmware
Westerndigital Sandisk X600 Sd9tn8w-256g Firmware
Westerndigital Sandisk X600 Sd9tn8w-512g Firmware
Westerndigital Sandisk X600 Sd9tn8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9tn8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9sb8w-128g Firmware
Westerndigital Sandisk X600 Sd9sb8w-256g Firmware
Westerndigital Sandisk X600 Sd9sb8w-512g Firmware
Westerndigital Sandisk X600 Sd9sb8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9sb8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9sn8w-128g Firmware
Westerndigital Sandisk X600 Sd9sn8w-256g Firmware
Westerndigital Sandisk X600 Sd9sn8w-512g Firmware
Westerndigital Sandisk X600 Sd9sn8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9sn8w-2t00 Firmware
Westerndigital Sandisk X300s Sd7sb3q-064g Firmware -
Westerndigital Sandisk X300s Sd7sn3q-064g Firmware -
2.1
CVSSv2
CVE-2019-11686
Western Digital SanDisk X300, X300s, X400, and X600 devices: A vulnerability in the wear-leveling algorithm of the drive may cause cryptographically sensitive parameters (such as data encryption keys) to remain on the drive media after their intended erasure.
Westerndigital Sandisk X600 Sd9tb8w-128g Firmware
Westerndigital Sandisk X600 Sd9tb8w-256g Firmware
Westerndigital Sandisk X600 Sd9tb8w-512g Firmware
Westerndigital Sandisk X600 Sd9tb8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9tb8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9tn8w-128g Firmware
Westerndigital Sandisk X600 Sd9tn8w-256g Firmware
Westerndigital Sandisk X600 Sd9tn8w-512g Firmware
Westerndigital Sandisk X600 Sd9tn8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9tn8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9sb8w-128g Firmware
Westerndigital Sandisk X600 Sd9sb8w-256g Firmware
Westerndigital Sandisk X600 Sd9sb8w-512g Firmware
Westerndigital Sandisk X600 Sd9sb8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9sb8w-2t00 Firmware
Westerndigital Sandisk X600 Sd9sn8w-128g Firmware
Westerndigital Sandisk X600 Sd9sn8w-256g Firmware
Westerndigital Sandisk X600 Sd9sn8w-512g Firmware
Westerndigital Sandisk X600 Sd9sn8w-1t00 Firmware
Westerndigital Sandisk X600 Sd9sn8w-2t00 Firmware
Westerndigital Sandisk X300s Sd7sb3q-064g Firmware -
Westerndigital Sandisk X300s Sd7sn3q-064g Firmware -
4.3
CVSSv2
CVE-2020-8960
Western Digital mycloud.com before Web Version 2.2.0-134 allows XSS.
Westerndigital Mycloud.com
1 Github repository
4.4
CVSSv2
CVE-2020-8959
Western Digital WesternDigitalSSDDashboardSetup.exe prior to 3.0.2.0 allows DLL Hijacking.
Westerndigital Sandiskssddashboardsetup.exe
Westerndigital Westerndigitalssddashboardsetup.exe
4.3
CVSSv2
CVE-2019-13467
Description: Western Digital SSD Dashboard prior to 2.5.1.0 and SanDisk SSD Dashboard prior to 2.5.1.0 applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources from the Dashboard web service. This vulnerability may allow an mal...
Sandisk Ssd Dashboard
Westerndigital Ssd Dashboard
5
CVSSv2
CVE-2019-13466
Western Digital SSD Dashboard prior to 2.5.1.0 and SanDisk SSD Dashboard prior to 2.5.1.0 have Incorrect Access Control. The “generate reports” archive is protected with a hard-coded password. An application update that addresses the protection of archive encryption i...
Westerndigital Ssd Dashboard
Sandisk Ssd Dashboard
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
NEXT »