First published: Fri Mar 25 2022(Updated: )
The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code.
Credit: psirt@wdc.com psirt@wdc.com psirt@wdc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Westerndigital My Cloud Pr2100 Firmware | <5.19.117 | |
Westerndigital My Cloud Pr2100 | ||
Westerndigital My Cloud Pr4100 Firmware | <5.19.117 | |
Westerndigital My Cloud Pr4100 | ||
Westerndigital My Cloud Ex4100 Firmware | <5.19.117 | |
Westerndigital My Cloud Ex4100 | ||
Westerndigital My Cloud Ex2 Ultra Firmware | <5.19.117 | |
Westerndigital My Cloud Ex2 Ultra | ||
Westerndigital My Cloud Mirror Gen 2 Firmware | <5.19.117 | |
Westerndigital My Cloud Mirror Gen 2 | ||
Westerndigital My Cloud Dl2100 Firmware | <5.19.117 | |
Westerndigital My Cloud Dl2100 | ||
Westerndigital My Cloud Dl4100 Firmware | <5.19.117 | |
Westerndigital My Cloud Dl4100 | ||
Westerndigital My Cloud Ex2100 Firmware | <5.19.117 | |
Westerndigital My Cloud Ex2100 | ||
Westerndigital My Cloud Firmware | <5.19.117 | |
Westerndigital My Cloud | ||
Westerndigital Wd Cloud Firmware | <5.19.117 | |
Westerndigital Wd Cloud | ||
Westerndigital My Cloud Home Firmware | <7.16-220 | |
Westerndigital My Cloud Home | ||
All of | ||
Westerndigital My Cloud Pr2100 Firmware | <5.19.117 | |
Westerndigital My Cloud Pr2100 | ||
All of | ||
Westerndigital My Cloud Pr4100 Firmware | <5.19.117 | |
Westerndigital My Cloud Pr4100 | ||
All of | ||
Westerndigital My Cloud Ex4100 Firmware | <5.19.117 | |
Westerndigital My Cloud Ex4100 | ||
All of | ||
Westerndigital My Cloud Ex2 Ultra Firmware | <5.19.117 | |
Westerndigital My Cloud Ex2 Ultra | ||
All of | ||
Westerndigital My Cloud Mirror Gen 2 Firmware | <5.19.117 | |
Westerndigital My Cloud Mirror Gen 2 | ||
All of | ||
Westerndigital My Cloud Dl2100 Firmware | <5.19.117 | |
Westerndigital My Cloud Dl2100 | ||
All of | ||
Westerndigital My Cloud Dl4100 Firmware | <5.19.117 | |
Westerndigital My Cloud Dl4100 | ||
All of | ||
Westerndigital My Cloud Ex2100 Firmware | <5.19.117 | |
Westerndigital My Cloud Ex2100 | ||
All of | ||
Westerndigital My Cloud Firmware | <5.19.117 | |
Westerndigital My Cloud | ||
All of | ||
Westerndigital Wd Cloud Firmware | <5.19.117 | |
Westerndigital Wd Cloud | ||
All of | ||
Westerndigital My Cloud Home Firmware | <7.16-220 | |
Westerndigital My Cloud Home | ||
Netatalk Netatalk | <3.1.18 | |
Fedoraproject Fedora | =37 | |
Fedoraproject Fedora | =38 | |
Fedoraproject Fedora | =39 | |
ubuntu/netatalk | <3.1.12~ | 3.1.12~ |
ubuntu/netatalk | <3.1.12~ | 3.1.12~ |
ubuntu/netatalk | <3.1.18~ | 3.1.18~ |
debian/netatalk | <=3.1.12~ds-8+deb11u1 | 3.1.18~ds-2 |
To take advantage of the latest security fixes, Western Digital recommends that users promptly update their devices to the latest firmware by clicking on the firmware update notification.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-22995 is a vulnerability that allows arbitrary writing of files in the default configuration of SMB and AFP.
Westerndigital My Cloud Pr2100 Firmware, Westerndigital My Cloud Pr4100 Firmware, Westerndigital My Cloud Ex4100 Firmware, Westerndigital My Cloud Ex2 Ultra Firmware, Westerndigital My Cloud Mirror Gen 2 Firmware, Westerndigital My Cloud Dl2100 Firmware, Westerndigital My Cloud Dl4100 Firmware, Westerndigital My Cloud Ex2100 Firmware, Westerndigital My Cloud Firmware, Westerndigital Wd Cloud Firmware, and Westerndigital My Cloud Home Firmware are affected by CVE-2022-22995.
CVE-2022-22995 has a severity rating of 9.8 (Critical).
To fix CVE-2022-22995, it is recommended to update the firmware of the affected devices to a version higher than 5.19.117 for My Cloud Pr2100, My Cloud Pr4100, My Cloud Ex4100, My Cloud Ex2 Ultra, My Cloud Mirror Gen 2, My Cloud Dl2100, My Cloud Dl4100, My Cloud Ex2100, My Cloud Firmware, and Wd Cloud Firmware. For My Cloud Home, update to version 7.16-220 or higher.
More information about CVE-2022-22995 can be found at the following references: [Link 1](https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T5CZZLFOTUP3QYHGHSDUNENGSLPJ6KGO/), [Link 2](https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XO34FWOIJI6V6PH2XY52WNBBARVWPJG2/), [Link 3](https://www.westerndigital.com/support/product-security/wdc-22005-netatalk-security-vulnerabilities).