漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
WD Discovery's Use of Weak Hashing Algorithm for Code Signing
Vulnerability Description
WD Discovery software executable files were signed with an unsafe SHA-1 hashing algorithm. An attacker could use this weakness to create forged certificate signatures due to the use of a hashing algorithm that is not collision-free. This could thereby impact the confidentiality of user content. This issue affects: Western Digital WD Discovery WD Discovery Desktop App versions prior to 4.4.396 on Mac; WD Discovery Desktop App versions prior to 4.4.396 on Windows.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
Vulnerability Type
可逆的单向哈希
Vulnerability Title
Western Digital WD Discovery 加密问题漏洞
Vulnerability Description
Western Digital MyCloud Home是美国西部数据(Western Digital)公司的一款个人存储设备。Western Digital WD Discovery是一款用于Western Digital个人存储设备的远程连接管理工具。 Western Digital WD Discovery 4.4.396版本存在安全漏洞,该漏洞源于使用不安全的 SHA-1 哈希算法进行签名,攻击者利用该漏洞可以利用此弱点创建伪造的证书签名。
CVSS Information
N/A
Vulnerability Type
N/A