First published: Tue Jul 12 2022(Updated: )
Implemented protections on AWS credentials that were not properly protected.
Credit: psirt@wdc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Westerndigital My Cloud Home Duo Firmware | <8.5.1-102 | |
Westerndigital My Cloud Home Duo | ||
Linux Linux kernel | ||
Westerndigital My Cloud Home Firmware | <8.5.1-102 | |
Westerndigital My Cloud Home |
My Cloud Home devices have been automatically updated to resolve this vulnerability
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-22998 is a vulnerability that involves implemented protections on AWS credentials that were not properly protected.
The affected software includes Westerndigital My Cloud Home Duo Firmware (up to version 8.5.1-102) and Westerndigital My Cloud Home Firmware (up to version 8.5.1-102).
The severity of CVE-2022-22998 is high with a score of 7.5.
To fix CVE-2022-22998, it is recommended to update to the latest firmware version provided by Western Digital.
You can find more information about CVE-2022-22998 on the Western Digital support website at [https://www.westerndigital.com/support/product-security/wdc-22009-my-cloud-home-firmware-version-8-7-0-107](https://www.westerndigital.com/support/product-security/wdc-22009-my-cloud-home-firmware-version-8-7-0-107).