Western Digital My Cloud EX2 Ultra Firmware 2.31.183
Approved changes feed: RSS · Atom
cpe:2.3:o:western_digital:my_cloud_ex2_ultra_firmware:2.31.183:*:*:*:*:*:*:*
part: o version: 2.31.183 update: *
| Vendor | Western Digital (8fa4e68f-591c-5d63-a691-dbe27a4f8690) |
|---|---|
| Product | My Cloud Ex2 Ultra Firmware (676da975-1575-54be-bb9b-57855c8666ff) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-18930 |
vulnerable | 2026-06-03 14:39:58.680829 |
Details available
Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users (including guest account) to remotely execute arbitrary code via a stack-based buffer overflow. There is no size verification logic in one of functions in libscheddl.so, and download_mgr.cgi makes it possible to enter large-sized f_idx inputs.
Published: 2019-11-13T15:47:08.000Z
Updated: 2024-08-05T02:02:39.856Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.