Strix
26.1K

CVE-2019-9950

UnknownEPSS 2.30%

Last modified

CVE-2019-9950 is a vulnerability of currently unknown severity. Western Digital My Cloud, My Cloud Mirror Gen2, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, My Cloud DL4100, My Cloud PR2100 and My Cloud PR4100 firmware before 2.31.174 is affected by an authentication bypass vulnerability. The login_mgr.cgi file checks credentials against /etc/shadow. EPSS estimates a 2.30% chance of exploitation in the next 30 days.

Description

Western Digital My Cloud, My Cloud Mirror Gen2, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, My Cloud DL4100, My Cloud PR2100 and My Cloud PR4100 firmware before 2.31.174 is affected by an authentication bypass vulnerability. The login_mgr.cgi file checks credentials against /etc/shadow. However, the "nobody" account (which can be used to access the control panel API as a low-privilege logged-in user) has a default empty password, allowing an attacker to modify the My Cloud EX2 Ultra web page source code and obtain access to the My Cloud as a non-Admin My Cloud device user.

Metrics

EPSS Probability
2.30%

81.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
WesterndigitalMy Cloud Firmware< 2.31.174
WesterndigitalMy Cloud Mirror Gen2 Firmware< 2.31.174
WesterndigitalMy Cloud Ex2 Ultra Firmware< 2.31.174
WesterndigitalMy Cloud Ex2100 Firmware< 2.31.174
WesterndigitalMy Cloud Ex4100 Firmware< 2.31.174
WesterndigitalMy Cloud Dl2100 Firmware< 2.31.174
WesterndigitalMy Cloud Dl4100 Firmware< 2.31.174
WesterndigitalMy Cloud Pr2100 Firmware< 2.31.174
WesterndigitalMy Cloud Pr4100 Firmware< 2.31.174

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-9950?
Western Digital My Cloud, My Cloud Mirror Gen2, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, My Cloud DL4100, My Cloud PR2100 and My Cloud PR4100 firmware before 2.31.174 is affected by an authentication bypass vulnerability. The login_mgr.cgi file checks credentials against /etc/shadow. However, the "nobody" account (which can be used to access the control panel API as a low-privilege logged-in user) has a default empty password, allowing an attacker to modify the My Cloud EX2 Ultra web page source code and obtain access to the My Cloud as a non-Admin My Cloud device user.
How severe is CVE-2019-9950?
Severity scoring for CVE-2019-9950 is pending analysis. The EPSS model estimates a 2.30% probability of exploitation in the next 30 days.
How do I fix CVE-2019-9950?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-9950?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST