CVE-2022-22998
HIGHWestern Digital My Cloud Home Duo and My Cloud Home Firmware < 8.5.1-102 - Insufficiently Protected AWS Credentials
Title source: llmDescription
Implemented protections on AWS credentials that were not properly protected.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.westerndigital.com/support/product-security/wdc-22009-my-cloud-home-firmware-version-8-7-0-107
Scores
CVSS v3
8.0
EPSS
0.0065
EPSS Percentile
46.1%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Details
CWE
CWE-522
Status
published
Products (2)
westerndigital/my_cloud_home_duo_firmware
< 8.5.1-102
westerndigital/my_cloud_home_firmware
< 8.5.1-102
Published
Jul 12, 2022
Tracked Since
Feb 18, 2026