PT-2020-20413 · Western Digital+1 · Western Digital My Cloud Home+1

Published

2020-02-20

Updated

2020-02-24

CVE-2020-8990

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Western Digital My Cloud Home versions prior to 3.6.0 ibi versions prior to 3.6.0

Description The issue allows Session Fixation.

Recommendations For Western Digital My Cloud Home versions prior to 3.6.0, update to version 3.6.0 or later. For ibi versions prior to 3.6.0, update to version 3.6.0 or later.

Fix

Session Fixation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-384

Related Identifiers

CVE-2020-8990

Affected Products

Western Digital My Cloud Home

Ibi

PT-2020-20413 · Western Digital+1 · Western Digital My Cloud Home+1

CVE-2020-8990

Weakness Enumeration

Related Identifiers

Affected Products

References · 5