S_N_T

**Name of the Vulnerable Software and Affected Versions** Western Digital My Cloud Home versions before 9.5.1-104 Western Digital My Cloud Home Duo versions before 9.5.1-104 SanDisk ibi versions before 9.5.1-104 Western Digital My Cloud OS 5 versions before 5.27.161 **Description** An uncontrolled resource consumption issue could arise by sending crafted requests to a service, consuming a large amount of memory and eventually resulting in the service being stopped and restarted. This issue requires the attacker to already have root privileges in order to exploit it. The issue may allow remote attackers to create a denial-of-service condition. **Recommendations** For Western Digital My Cloud Home versions before 9.5.1-104, update to version 9.5.1-104 or later. For Western Digital My Cloud Home Duo versions before 9.5.1-104, update to version 9.5.1-104 or later. For SanDisk ibi versions before 9.5.1-104, update to version 9.5.1-104 or later. For Western Digital My Cloud OS 5 versions before 5.27.161, update to version 5.27.161 or later. As a temporary workaround, consider restricting access to the vulnerable service to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** My Cloud OS versions prior to 5.27.161 My Cloud Home version prior to 9.5.1-104 My Cloud Home Duo version prior to 9.5.1-104 SanDisk ibi version prior to 9.5.1-104 **Description** The issue is related to a server-side request forgery (SSRF) vulnerability. It could allow a rogue server on the local network to modify its URL using another DNS address to point back to the loopback adapter, potentially exploiting other vulnerabilities on the local server. This vulnerability is associated with insufficient validation of incoming requests. **Recommendations** For My Cloud OS versions prior to 5.27.161, update to version 5.27.161 or later. For My Cloud Home, My Cloud Home Duo, and SanDisk ibi versions prior to 9.5.1-104, update to version 9.5.1-104 or later. As a temporary workaround, consider restricting access to the DNS addresses that refer to the loopback adapter to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Western Digital My Cloud Home versions before 9.4.0-191 Western Digital My Cloud Home Duo versions before 9.4.0-191 SanDisk ibi versions before 9.4.0-191 Western Digital My Cloud OS 5 versions before 5.26.202 **Description** An uncontrolled resource consumption issue could arise by sending crafted requests to a service, consuming a large amount of memory and eventually resulting in the service being stopped and restarted. This issue requires the attacker to already have root privileges in order to exploit it. **Recommendations** For Western Digital My Cloud Home versions before 9.4.0-191, update to version 9.4.0-191 or later. For Western Digital My Cloud Home Duo versions before 9.4.0-191, update to version 9.4.0-191 or later. For SanDisk ibi versions before 9.4.0-191, update to version 9.4.0-191 or later. For Western Digital My Cloud OS 5 versions before 5.26.202, update to version 5.26.202 or later.

**Name of the Vulnerable Software and Affected Versions** Western Digital My Cloud OS 5 versions prior to 5.26.119 **Description** An issue was discovered in Western Digital My Cloud OS 5 devices, allowing an attacker to execute code in the context of the root user on a vulnerable CGI file due to improper neutralization of special elements used in a command. This issue could lead to remote code execution. **Recommendations** For versions prior to 5.26.119, update to version 5.26.119 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable CGI file until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Western Digital My Cloud OS 5 versions prior to 5.26.202 **Description** A Server-Side Request Forgery (SSRF) issue was identified, which could allow a rogue server on the local network to modify its URL to point back to the loopback adapter. This could potentially exploit other vulnerabilities on the local server. **Recommendations** For Western Digital My Cloud OS 5 versions prior to 5.26.202, update to version 5.26.202 or later to resolve the issue. As a temporary workaround, consider restricting access to the local server to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Inductive Automation Ignition version 8.1.15 (b2022030114) **Description** This issue allows remote attackers to execute arbitrary code on affected installations. Although authentication is required to exploit this issue, the existing authentication mechanism can be bypassed. The specific flaw exists within com.inductiveautomation.metro.impl, resulting from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this issue to execute code in the context of SYSTEM. **Recommendations** For version 8.1.15 (b2022030114), consider disabling the deserialization of untrusted data within com.inductiveautomation.metro.impl as a temporary workaround until a patch is available. Restrict access to the affected module to minimize the risk of exploitation. Avoid using user-supplied data in the affected implementation until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Inductive Automation Ignition version 8.1.15 (b2022030114) **Description** This issue allows remote attackers to bypass authentication on affected installations. The flaw exists within com.inductiveautomation.ignition.gateway.web.pages due to the lack of proper authentication prior to access to functionality. An attacker can leverage this to bypass authentication on the system. **Recommendations** For version 8.1.15 (b2022030114), consider restricting access to the com.inductiveautomation.ignition.gateway.web.pages functionality until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Samsung Galaxy S21 versions prior to 4.5.40.5 **Description** This issue allows local attackers to execute arbitrary code on affected installations. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. The specific flaw exists within the handling of redirections. An attacker can force a redirection to a site that serves malicious content. This can be leveraged in conjunction with other issues to escalate privileges and execute arbitrary code in the context of the current user. **Recommendations** For versions prior to 4.5.40.5, update to version 4.5.40.5 or later to resolve the issue. As a temporary workaround, consider restricting access to sites that may serve malicious content to minimize the risk of exploitation. Avoid using the loadUrl function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Western Digital My Cloud devices (affected versions not specified) **Description** A limited Server-Side Request Forgery (SSRF) issue was discovered, allowing an attacker to impersonate a server, bypass access controls, and reach any page on the server. The vulnerability was addressed by creating a whitelist for valid parameters. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Western Digital My Cloud (affected versions not specified) **Description** A limited authentication bypass issue was discovered, allowing an attacker to achieve remote code execution and escalate privileges on the My Cloud devices. The issue was addressed by changing access token validation logic and rewriting rule logic on PHP scripts. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Western Digital My Cloud OS 5 versions prior to 5.06.115 **Description** An issue was discovered that could allow an unauthenticated user to execute privileged commands on the device via a cookie, effectively bypassing NAS Admin authentication. This could be further exploited by an authenticated administrator using an upload endpoint to upload executable PHP scripts. **Recommendations** For Western Digital My Cloud OS 5 versions prior to 5.06.115, update to version 5.06.115 or later to resolve the issue. As a temporary workaround, consider restricting access to the upload endpoint and limiting the execution of privileged commands until a patch is applied.