CVE-2024-22170

Sept. 30, 2024, 12:45 p.m.

Tags

CWE-119
psirt@wdc.com
2024-09-27
CVE-2024-22170

Product(s) Impacted

Western Digital My Cloud

  • before 5.29.102

Description

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Western Digital My Cloud ddns-start on Linux allows Overflow Buffers.This issue affects My Cloud: before 5.29.102.

Weaknesses

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

CWE ID: 119

Date

Published: Sept. 27, 2024, 5:15 p.m.

Last Modified: Sept. 30, 2024, 12:45 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

psirt@wdc.com

References

https://www.westerndigital.com/support/product-security/wdc-24005-western-digital-my-cloud-os-5-firmware-5-29-102
psirt@wdc.com