Western Digital My Book World II NAS... CVE-2019-16399

7.5 AV AC AU C I A
发布: 2019-09-18
修订: 2019-09-29

Western Digital WD My Book World through II 1.02.12 suffers from Broken Authentication, which allows an attacker to access the /admin/ directory without credentials. An attacker can easily enable SSH from /admin/system_advanced.php?lang=en and login with the default root password welc0me.