Back to directory
WRITEUP #887

A Pain in the NAS: Exploiting Cloud Connectivity to PWN your NAS: WD PR4100 Edition

Auth BypassAuthentication bypassRCE
byNoam Moshe
Program
Western Digital
Published
Aug 9, 2023
Added to HackDex
Aug 21, 2023
Read Full Writeuphttps://claroty.com/team82/research/a-pain-in-the-nas-exploiting-cloud-connectivity-to-pwn-your-nas-wd-pr4100-edition
RELATED WRITEUPS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
Breaking the Barrier: Admin Panel Takeover Worth $3500
Auth BypassAuthentication bypass
Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
RCEConfusion attack
SAML Authentication Bypass Leading to Admin Panel Access
Auth BypassSAML
Breaking Down Barriers: Exploiting Authenticated IPC Clients
Auth BypassIPC client

Built with ❤️ by Shubham Rawat