CVE-2020-28971
Summary : Western Digital My Cloud OS 5 devices prior to 5.06.115 are affected by a NAS Admin authentication bypass in the nasAdmin service due to insufficient URI-path validation. This enables unauthenticated attackers to execute privileged commands on the device, with ZDI noting potential arbit...