Vulnerabilities (CVE)

Filtered by vendor Western Digital Subscribe
Filtered by product Mycloud Nas
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-10108 1 Western Digital 1 Mycloud Nas 2024-11-21 10.0 HIGH 9.8 CRITICAL
Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11.142 /web/google_analytics.php URL via a modified arg parameter in the POST data.
CVE-2016-10107 1 Western Digital 1 Mycloud Nas 2024-11-21 10.0 HIGH 9.8 CRITICAL
Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11.142 index.php page via a modified Cookie header.