First published: Mon Feb 06 2023(Updated: )
Western Digital My Cloud devices before OS5 have a nobody account with a blank password.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Westerndigital My Cloud Os | <5.02.104 | |
Westerndigital My Cloud Pr4100 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-36224 is a vulnerability found in Western Digital My Cloud devices prior to OS5 that allows unauthorized access through a blank password in the nobody account.
CVE-2021-36224 has a severity rating of 9.8, which is classified as critical.
To fix CVE-2021-36224, users should update their Western Digital My Cloud devices to OS5 or apply the necessary patches provided by the vendor.
No, Western Digital My Cloud Pr4100 devices are not affected by CVE-2021-36224.
Yes, you can find more information on CVE-2021-36224 in the provided references: [link1], [link2], [link3].