CVE-2022-29840 : Server-Side Request Forgery (SSRF) vulnerability that could allow a rogue server

Server-Side Request Forgery (SSRF) vulnerability that could allow a rogue server on the local network to modify its URL to point back to the loopback adapter was addressed in Western Digital My Cloud OS 5 devices. This could allow the URL to exploit other vulnerabilities on the local server.This issue affects My Cloud OS 5 devices before 5.26.202.

Published 2023-05-10 23:15:09

Updated 2023-05-22 19:33:58

Source Western Digital

View at NVD, CVE.org

Vulnerability category: Server-side request forgery (SSRF)

Products affected by CVE-2022-29840

Westerndigital » My Cloud Os
Versions from including (>=) 5.02.104 and before (<) 5.26.202
cpe:2.3:o:westerndigital:my_cloud_os:*:*:*:*:*:*:*:*
Matching versions
When used together with: Westerndigital » My Cloud » Version: N/A
When used together with: Westerndigital » My Cloud Dl2100 » Version: N/A
When used together with: Westerndigital » My Cloud Dl4100 » Version: N/A
When used together with: Westerndigital » My Cloud Ex2 Ultra » Version: N/A
When used together with: Westerndigital » My Cloud Ex2100 » Version: N/A
When used together with: Westerndigital » My Cloud Ex4100 » Version: N/A
When used together with: Westerndigital » My Cloud Mirror G2 » Version: N/A
When used together with: Westerndigital » My Cloud Pr2100 » Version: N/A
When used together with: Westerndigital » My Cloud Pr4100 » Version: N/A
When used together with: Westerndigital » Wd Cloud » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2022-29840

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 8 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-29840

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N	1.8	3.6	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None
5.1	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N	1.4	3.6	Western Digital
Attack Vector: Local Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None

CWE ids for CVE-2022-29840

CWE-918 Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.
Assigned by:
- nvd@nist.gov (Primary)
- psirt@wdc.com (Secondary)

References for CVE-2022-29840

https://www.westerndigital.com/support/product-security/wdc-23006-my-cloud-firmware-version-5-26-202

WDC-23006 My Cloud Firmware Version 5.26.202 | Western Digital
Patch;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2022-29840

Products affected by CVE-2022-29840

Exploit prediction scoring system (EPSS) score for CVE-2022-29840

CVSS scores for CVE-2022-29840

CWE ids for CVE-2022-29840

References for CVE-2022-29840