cvedb.io
CVE-2022-29838
MEDIUM · CVSS 4.3
EPSS exploitation probability: 0%
Published 2022-12-09T18:15:18.517 · Last modified 2026-06-17T04:40:48.260

Summary

Improper Authentication vulnerability in the encrypted volumes and auto mount features of Western Digital My Cloud devices allows insecure direct access to the drive information in the case of a device reset. This issue affects: Western Digital My Cloud My Cloud versions prior to 5.25.124 on Linux.

Affected products

westerndigital — my_cloud_os

Does this affect you?

Add your gear to cvedb and we'll alert you only when westerndigital ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.