First published: Thu Feb 20 2020(Updated: )
Western Digital My Cloud Home before 3.6.0 and ibi before 3.6.0 allow Session Fixation.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Western Digital Ibi | <3.6.0 | |
Western Digital My Cloud Home | <3.6.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-8990 is a vulnerability that allows session fixation in Western Digital My Cloud Home and ibi before version 3.6.0.
CVE-2020-8990 has a severity rating of 9.1 (critical).
CVE-2020-8990 affects Western Digital My Cloud Home and ibi versions up to and excluding 3.6.0.
To fix CVE-2020-8990, you should update your Western Digital My Cloud Home or ibi to version 3.6.0 or higher.
You can find more information about CVE-2020-8990 at the following references: [link1](https://support.wdc.com/downloads.aspx?g=907&lang=en#downloads) and [link2](https://www.westerndigital.com/support/productsecurity/wdc-19013-my-cloud-home-and-ibi-session-invalidation-vulnerability).