Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Western Digital My Cloud Multiple Products 5.0 < 5.15.106 Unauthorized Access Vulnerability
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
Multiple Western Digital My Cloud products are prone to a vulnerability that could allow unauthorized access via SSH.
Insight
Insight
Addressed a vulnerability in My Cloud SSH configuration that could allow unauthorized access via SSH. The vulnerability was addressed by removing the use of DSA keys and hardening the SSH configuration.
Affected Software
Affected Software
Western Digital My Cloud PR2100, My Cloud PR4100, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud Mirror Gen 2, My Cloud DL2100, My Cloud DL4100, My Cloud (P/N: WDBCTLxxxxxx-10) and WD Cloud (Japan) with firmware versions prior to 5.15.106.
Detection Method
Detection Method
Checks if a vulnerable version is present on the target host.
Solution
Solution
Update to firmware version 5.15.106 or later.