← Back

CVE-2019-9949

nvd nist
Published: May 23, 2019Modified: Nov 21, 2024

JSON object

Loading...
8.8
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD

Description

Western Digital My Cloud Cloud, Mirror Gen2, EX2 Ultra, EX2100, EX4100, DL2100, DL4100, PR2100 and PR4100 before firmware 2.31.183 are affected by a code execution (as root, starting from a low-privilege user session) vulnerability. The cgi-bin/webfile_mgr.cgi file allows arbitrary file write by abusing symlinks. Specifically, this occurs by uploading a tar archive that contains a symbolic link, then uploading another archive that writes a file to the link using the "cgi_untar" command. Other commands might also be susceptible. Code can be executed because the "name" parameter passed to the cgi_unzip command is not sanitized.

Affected (9)

Westerndigital
9 products
My Cloud Firmware
My Cloud Mirror Gen2 Firmware
My Cloud Ex2 Ultra Firmware
My Cloud Ex2100 Firmware
My Cloud Ex4100 Firmware
My Cloud Dl2100 Firmware
My Cloud Dl4100 Firmware
My Cloud Pr2100 Firmware
My Cloud Pr4100 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Mirror Gen2 Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud Mirror Gen2
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Ex2 Ultra Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud Ex2 Ultra
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Ex2100 Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud Ex2100
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Ex4100 Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud Ex4100
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Dl2100 Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud Dl2100
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Dl4100 Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud Dl4100
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Pr2100 Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud Pr2100
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
My Cloud Pr4100 Firmware
Before 2.31.183
Running on/withPlatform Versions
Westerndigital
My Cloud Pr4100
All versions

Related CWEs

CWE-59
Improper Link Resolution Before File Access ('Link Following')
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

References (6)

Source: cve@mitre.org
ExploitThird Party Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory

Timeline

No history available yet.