CVE-2020-12830

CRITICAL

Western Digital My Cloud <5.04.114 - Privilege Escalation

Title source: llm
STIX 2.1

Description

Addressed multiple stack buffer overflow vulnerabilities that could allow an attacker to carry out escalation of privileges through unauthorized remote code execution in Western Digital My Cloud devices before 5.04.114.

References (2)

Core 2

Scores

CVSS v3 9.8
EPSS 0.0319
EPSS Percentile 86.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (1)
westerndigital/my_cloud_firmware < 5.04.114
Published Oct 27, 2020
Tracked Since Feb 18, 2026