Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

CVE-2021-3310 PoC — Western Digital My Cloud 后置链接漏洞

Source
https://github.com/piffd0s/CVE-2021-3310
Associated Vulnerability
Title:Western Digital My Cloud 后置链接漏洞 (CVE-2021-3310)
Description:Western Digital My Cloud OS 5 devices before 5.10.122 mishandle Symbolic Link Following on SMB and AFP shares. This can lead to code execution and information disclosure (by reading local files).
Description
Western Digital MyCloud PR4100 Link Resolution Information Disclosure Vulnerability
Readme
# CVE-2021-3310
Western Digital MyCloud PR4100 Link Resolution Information Disclosure Vulnerability
Use the included files to trigger the vulnerability on mycloud OS 3, this is patched in OS 5
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →