Hackers can now take over remotely Western Digital NAS storages. Critical flaws

My Cloud from Western Digital is one of the most popular network-attached storage (NAS) devices that are being used by businesses and individuals to host their files, in addition to backing them up and syncing them with a variety of cloud- and web-based services. It is also one of the most widely used network-attached storage (NAS) devices. On unpatched My Cloud OS 5 devices, Western Digital has corrected a vulnerability that was of critical severity and might have allowed attackers to gain remote code execution and a reverse shell. This vulnerability, which has been assigned the identifier CVE-2022-29841, was brought about by a command that produced a system command without first cleaning the read data and then read files from a privileged location.

It is possible for remote threat actors to exploit this vulnerability in order to launch attacks against My Cloud devices that are running vulnerable firmware versions.

“A command that read files from a privileged location and created a system command without sanitizing the read data was the root cause of a remote code execution vulnerability, which has already been fixed. According to the business that specializes in data storage, “this instruction might be triggered remotely by an attacker in order to cause code execution and get a reverse shell.”

The following products are included on the list of susceptible devices according to the CVE-2022-29841 advisory:

In the My Cloud OS 5, Western Digital patched three additional vulnerabilities, which are as follows:

My Cloud PR2100
My Cloud PR4100
My Cloud EX4100
My Cloud EX2 Ultra
My Cloud Mirror G2
My Cloud DL2100
My Cloud DL4100
My Cloud EX2100
My Cloud
WD Cloud

CVE-2022-29842 is a fix for a command injection vulnerability that, if exploited, might let an attacker run code on a vulnerable CGI file in the context of the root user.
CVE-2022-29843 is a patch that addresses a vulnerability in the configuration of the DDNS service that had a CVSS score of 6.2. This vulnerability could have enabled an attacker to run code in the context of the root user.
CVE-2022-29844 is a memory corruption vulnerability in the FTP service that was fixed. This vulnerability could allow an attacker to read and write arbitrary files. The CVSS score for this vulnerability is 6.7. This might result in the complete compromise of the NAS, which would allow the attacker the ability to execute commands remotely.

Mike Stevens

Information security specialist, currently working as risk infrastructure specialist & investigator.
15 years of experience in risk and control process, security audit support, business continuity design and support, workgroup management and information security standards.

Hackers can now take over remotely Western Digital NAS storages. Critical flaws

Critical Vulnerabilities in Cisco ASA & FTD Exposed! Learn How to Exploit CVE-2024-20353 and CVE-2024-20359

Dual Vulnerabilities in Microsoft SharePoint Server: Essential Steps to Mitigate Vulnerabilities

Exploiting the High-Risk Vulnerabilities in Secure Boot of Most Linux Devices on the Planet

Hackers’ New Target is containerized environments through vulnerabilities in runC

Hacking Android, Linux, macOS, iOS, Windows Devices via Bluetooth using a single vulnerability

110 Million AT&T Customers’ Data leaked: Inside the $370,000 Ransom Payment

How Hackers Stole Taylor Swift Tickets: The Full Ticketmaster Breach Story

Dark Web Sale: AMD’s Confidential Data Leaked – Full Story Revealed!

How Snowflake Hack is Linked to Santander(Spain, Chile, Uruguay) and Ticketmaster Breaches.Are You Affected?

Healthcare Hack Horror: Cyberattacks Leave French Hospitals in Chaos for $10 Million

Hacking the Unhackable: The Story of How CISA Was Breached

The Cloudflare Hack: A Hacker, 5000 Credentials, and Operation Code Red

Comparing CIS v8, CIS AWS Foundations Benchmark v1.5, and PCI DSS v4.0 for CSPM. Which you Should Start With?

MITRE EMB3D Explained: Top Threats to Embedded Devices and How EMB3D Mitigates Them

Google Gemini Under Fire: Critical Security Vulnerabilities You Need to Know to hack Gemini

Cracking SCCM Wide Open: Pentesting System Center Configuration Manager with Misconfiguration Manager

Hacking Windows 10 and 11 with DLL Search Order Hijacking without administrator rights

Hacking SSH Connections by exploiting SSH Protocol Vulnerabilities: Different Terrapin Attack Vectors

Understanding Latest DHCP DNS Vulnerabilities and How DHCP Exploits work in Active Directory

Hacking Bluetooth via MiTM: The BLUFFS Bluetooth attack to hack into Millions of Devices

6 Steps to File Anonymous SEC Complaints Against Data Breachers & Force Them to Pay Fines or Take Action

Inside the Exploit: How Your ChatGPT’s Uploaded Files Could Be Stolen by Prompt Injection Vulnerability

This Google Calendar technique allows to hack into companies without getting detected

This telegram bot is like ChatGPT for scammers to steal money from victims easily

How easy is to bomb someone mobile phone with thousands of SMS messages?

This new DDoS attack prevention technique has a 99% accuracy rate

How to secure Cisco Firepower Threat Defense (FTD) firewalls ?

The Dark Side of PDFs: How Opening a Simple PDF Could Unleash a Cybersecurity Nightmare

Largest soft drink bottle supplier, recycle and plastic manufacturers hacked by ransomware

Visited thesaurus.com in search for Synonyms? You have Coinminer malware infection

How to send malware via Teams, even “Safe Attachments” or “Safe Links” can’t protect you

2 Big Cloud hosting companies shutdown by ransomware and lose all customer data