CVE-2022-23006

Name of the Vulnerable Software and Affected Versions Western Digital My Cloud Home (affected versions not specified) Western Digital My Cloud Home Duo (affected versions not specified) SanDisk ibi (affected versions not specified)

Description A stack-based buffer overflow issue was found that could allow an attacker with local system access to read information from the /etc/version file. This issue can only be exploited by combining it with another problem. If an attacker can carry out a remote code execution attack, they can access the vulnerable file due to insecure functions in the code. User interaction is required for exploitation. Exploiting this issue could result in information exposure, file modification, memory access errors, or system crashes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.