7 matches found
Western Digital My Book Live End of Life (EOL) Detection
The remote Western Digital My Book Live device has reached the End of Life EOL / End of Updates EOU and should not be used anymore. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2021-35941
Western Digital WD My Book Live 2.x and later and WD My Book Live Duo all versions have an administrator API that can perform a system factory restore without authentication, as exploited in the wild in June 2021, a different vulnerability than CVE-2018-18472...
MyBook Users Urged to Unplug Devices from Internet
Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affect...
CVE-2018-18472
creationtimestamp| type| source ---|---|--- 2021-06-25 15:30:14+00:00| seen| https://t.me/deeptoweb/1730 2021-06-27 16:24:46+00:00| seen| https://t.me/CyberGovIL/1284 2021-06-28 12:30:04+00:00| exploited| https://t.me/SecLabNews/10467 2021-06-30 09:10:02+00:00| exploited|...
CVE-2018-18472
Western Digital WD My Book Live and WD My Book Live Duo all versions have a root Remote Command Execution bug via shell metacharacters in the /api/1.0/rest/languageconfiguration language parameter. It can be triggered by anyone who knows the IP address of the affected device, as exploited in the...
CVE-2018-18472
Western Digital WD My Book Live and WD My Book Live Duo all versions have a root Remote Command Execution bug via shell metacharacters in the /api/1.0/rest/languageconfiguration language parameter. It can be triggered by anyone who knows the IP address of the affected device, as exploited in the...
CVE-2018-18472
The CVE-2018-18472 entry concerns Western Digital WD My Book Live and WD My Book Live Duo (all versions) that expose a root Remote Command Execution flaw via shell metacharacters in the /api/1.0/rest/language_configuration language parameter. The vulnerability can be triggered by any actor that k...