Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-3310

Disclosure Date: March 10, 2021 (last updated February 22, 2025)
Western Digital My Cloud OS 5 devices before 5.10.122 mishandle Symbolic Link Following on SMB and AFP shares. This can lead to code execution and information disclosure (by reading local files).
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0