CVE-2019-18931 - OpenCVE

Western Digital My Cloud EX2 Ultra firmware 2.31.195 allows a Buffer Overflow with Extended Instruction Pointer (EIP) control via crafted GET/POST parameters.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:S/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Western Digital	My Cloud Ex2 Ultra Firmware My Cloud Ex2 Ultra

Configuration 1 [-]

AND

cpe:2.3:o:western_digital:my_cloud_ex2_ultra_firmware:2.31.195:*:*:*:*:*:*:*

cpe:2.3:h:western_digital:my_cloud_ex2_ultra:-:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/DelspoN/CVE/blob/master/CVE-2019-18931/description.txt	Third Party Advisory
https://github.com/DelspoN/CVE/tree/master/CVE-2019-18931	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2019-11-13T15:34:46

Updated: 2019-11-13T15:34:46

Reserved: 2019-11-12T00:00:00

Link: CVE-2019-18931

JSON object: View

NVD Information

Status : Analyzed

Published: 2019-11-13T16:15:11.517

Modified: 2019-11-15T20:02:44.877

Link: CVE-2019-18931

JSON object: View

Redhat Information

No data.

CWE

CWE-120

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:western_digital:my_cloud_ex2_ultra_firmware:2.31.195:*:*:*:*:*:*:*", "matchCriteriaId": "76767780-D209-472E-8BB2-642A8608B661", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:western_digital:my_cloud_ex2_ultra:-:*:*:*:*:*:*:*", "matchCriteriaId": "F7BD0108-A509-4F54-86D5-5471D079D280", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Western Digital My Cloud EX2 Ultra firmware 2.31.195 allows a Buffer Overflow with Extended Instruction Pointer (EIP) control via crafted GET/POST parameters."}, {"lang": "es", "value": "El firmware Western Digital My Cloud EX2 Ultra versi\u00f3n 2.31.195, permite un Desbordamiento de B\u00fafer con control Extended Instruction Pointer (EIP) por medio de par\u00e1metros GET/POST especialmente dise\u00f1ados"}], "id": "CVE-2019-18931", "lastModified": "2019-11-15T20:02:44.877", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-11-13T16:15:11.517", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/DelspoN/CVE/blob/master/CVE-2019-18931/description.txt"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/DelspoN/CVE/tree/master/CVE-2019-18931"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "nvd@nist.gov", "type": "Primary"}]}