CSRF Vulnerability in Western Digital WD Discovery Application Allows Data Theft and Disk Manipulation

CSRF Vulnerability in Western Digital WD Discovery Application Allows Data Theft and Disk Manipulation

CVE-2020-12427 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

The Western Digital WD Discovery application before 3.8.229 for MyCloud Home on Windows and macOS is vulnerable to CSRF, with impacts such as stealing data, modifying disk contents, or exhausting disk space.

Learn more about our Cis Benchmark Audit For Apple Macos.