Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Western Digital — Vulnerabilities & Security Advisories 44

Browse all 44 CVE security advisories affecting Western Digital. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Western Digital manufactures data storage solutions, including hard drives, solid-state drives, and network-attached storage devices, serving both consumer and enterprise markets. The company’s product portfolio, particularly its NAS and cloud-connected storage units, has historically been associated with numerous security flaws. Recorded vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from insecure web interfaces or firmware components. These weaknesses allow attackers to potentially gain unauthorized access to stored data or compromise the underlying device. While specific major public breaches are less documented compared to larger software vendors, the high volume of Common Vulnerabilities and Exposures indicates persistent challenges in securing embedded systems and web management consoles. Maintaining robust firmware updates and secure configuration practices remains critical for mitigating risks associated with these storage appliances.

Found 4 results / 44Clear Filters
Top products by Western Digital: My Cloud My Cloud OS 5 My Cloud Home My Cloud Home and My Cloud Home Duo Sweet B Library WD Discovery TV Media Player EdgeRover My Cloud OS 5 Mobile App My Cloud Home web app
CVE IDTitleCVSSSeverityPublished
CVE-2022-23004 Algorithm incorrectly returning error and Invalid unreduced value written to output buffer — Sweet B LibraryCWE-707 5.3 Medium2022-07-29
CVE-2022-23003 Shared secret or Point multiplication of NIST P-256 points with X coordinate of zero — Sweet B LibraryCWE-703 5.3 Medium2022-07-29
CVE-2022-23002 Point Compression/Decompression of NIST P-256 points with X coordinate of zero — Sweet B LibraryCWE-703 5.3 Medium2022-07-29
CVE-2022-23001 Sweet-B Library: Point compress/decompress using the wrong bit for sign — Sweet B LibraryCWE-682 5.3 Medium2022-07-29

This page lists every published CVE security advisory associated with Western Digital. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.