漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Cross-Site Scripting (XSS) vulnerability on Western Digital My Cloud and SanDisk ibi Web Apps
Vulnerability Description
A Cross-Site Scripting (XSS) vulnerability on the My Cloud, My Cloud Home, SanDisk ibi, and WD Cloud web apps was found which could allow an attacker to redirect the user to a crafted domain and reset their credentials, or to execute arbitrary client-side code in the user’s browser session to carry out malicious activities.The web apps for these devices have been automatically updated to resolve this vulnerability and improve the security of your devices and data.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
多款Western Digital产品 安全漏洞
Vulnerability Description
Western Digital My Cloud是美国西部数据(Western Digital)公司的一款个人云存储设备。 多款Western Digital产品存在安全漏洞,该漏洞源于存在跨站脚本(XSS)漏洞,可能允许攻击者将用户重定向到精心设计的域并重置其凭据,或者在用户的浏览器会话中执行任意客户端代码以开展恶意活动。以下产品受到影响:My Cloud Home、SanDisk ibi和WD Cloud Web。
CVSS Information
N/A
Vulnerability Type
N/A