CVE-2024-22168 | Western Digital My Cloud Home Web App prior 4.28.0-102 Domain cross site scripting

Posted by Angelo Barbosa | Jun 25, 2024 | CVE

A vulnerability has been found in Western Digital My Cloud Home Web App, WD Cloud Web App and My Cloud Web App and classified as problematic. This vulnerability affects unknown code of the component Domain Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-22168. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22168 | Western Digital My Cloud Home Web App prior 4.28.0-102 Domain cross site scripting

Related Posts

CVE-2023-45839 | Buildroot 2023.08.1/622698d7847 code download (TALOS-2023-1844)

CVE-2024-39678 | XjSv Cooked Plugin up to 1.7.15.4 on WordPress cross-site request forgery (GHSA-pp3h-ghxf-r9pc)

CVE-2024-41959 | mailcow-dockerized prior 2024-07 API Log cross site scripting (GHSA-v3r3-8f69-ph29)

CVE-2024-42023 | Veeam ONE up to 12.1.0.3208 Privilege Escalation (kb4649)