Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Western Digital security patch release for CVE-2025-30247

Security Patch Release
First reported
Last updated
Happening score
H score 24
1 unique sources, 1 articles

Summary

Hide ▲

Western Digital shipped firmware 5.31.108 for My Cloud NAS models to close CVE-2025-30247, a critical command-injection flaw that could allow remote arbitrary command execution. The update covers multiple My Cloud devices and applies to all earlier firmware versions. Owners should install the fix quickly, and users with end-of-support systems may need to take devices offline until they can replace or secure them. The issue matters because exploitation could lead to file tampering, configuration changes, and binary execution.

Related Happenings

Cisco security patch release for CVE-2026-20182

Security Patch Release
First: 14.05.2026 20:45 Last: 14.05.2026 20:45 Sources 1

About this happening: Cisco released **updates** for **CVE-2026-20182**, a **maximum-severity authentication bypass** in **Catalyst SD-WAN Controller/Manager**, after the flaw was **exploited in limite...

Open Happening

Cisco security patch release for CVE-2026-20188

Security Patch Release
First: 06.05.2026 21:06 Last: 06.05.2026 21:06 Sources 1

About this happening: **Cisco** released security updates for **CVE-2026-20188**, a high-severity **DoS vulnerability** in **Crosswork Network Controller (CNC)** and **Network Services Orchestrator (NS...

Open Happening

Linux kernel security update for Copy Fail (CVE-2026-31431)

Security Patch Release
First: 30.04.2026 16:54 Last: 30.04.2026 16:54 Sources 1

About this happening: **Linux kernel** maintainers have fixed **CVE-2026-31431** and are rolling out updates to close a **local privilege escalation** flaw that lets an unprivileged attacker gain **roo...

Open Happening

GIGABYTE security patch release for CVE-2026-4415

Security Patch Release
First: 01.04.2026 01:28 Last: 01.04.2026 01:28 Sources 1

About this happening: **GIGABYTE** is directing users of **Control Center** to upgrade to **25.12.10.01** to mitigate **CVE-2026-4415**, a flaw that exposed systems to remote file writes. The update ma...

Open Happening

TP-Link security patch release for CVE-2025-15517

Security Patch Release
First: 25.03.2026 13:11 Last: 25.03.2026 13:11 Sources 1

About this happening: **TP-Link** released **security updates** for its **Archer NX** router series to close a critical authentication-bypass flaw that could let attackers upload firmware without loggi...

Open Happening

Timeline

  1. 30.09.2025 18:07 1 articles · 7mo ago

    Automatic updates deliver firmware 5.31.108 to My Cloud devices

    Mitigation Patch Update

    My Cloud devices with automatic updates enabled began receiving firmware version 5.31.108 since September 23, 2025, giving owners an immediate mitigation path for CVE-2025-30247 on supported systems.

    Show sources
    Open in new tab
  2. 30.09.2025 18:07 2 articles · 7mo ago

    Western Digital releases firmware 5.31.108 for My Cloud NAS models

    Initial Disclosure

    Western Digital released firmware version 5.31.108 for multiple My Cloud NAS models to fix CVE-2025-30247, a critical OS command injection in the web UI that can be triggered with specially crafted HTTP POST requests and can lead to remote arbitrary system commands on affected devices.

    Show sources
    Open in new tab