Test ID:	1.3.6.1.4.1.25623.1.0.108931
Category:	Web application abuses
Title:	Western Digital My Cloud Multiple Products < 2.31.204 Multiple Vulnerabilities
Summary:	Multiple Western Digital My Cloud products are prone to multiple vulnerabilities.
Description:	Summary: Multiple Western Digital My Cloud products are prone to multiple vulnerabilities. Vulnerability Insight: The following issues have been addressed: - Addressed a FTP vulnerability which could allow an unauthenticated attacker to inject commands prior to TLS authentication (CVE-2011-1575) - Resolved issue where remote access could not bedisabled Affected Software/OS: Western Digital My Cloud with firmware versions prior to 2.31.204. Solution: Update to firmware version 2.31.204 or later. Note: Some My Cloud products are already end-of-life and doesn't receive any updates anymore. CVSS Score: 5.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1575 http://lists.opensuse.org/opensuse-updates/2011-05/msg00029.html http://openwall.com/lists/oss-security/2011/04/11/14 http://openwall.com/lists/oss-security/2011/04/11/7 http://openwall.com/lists/oss-security/2011/04/11/8 http://openwall.com/lists/oss-security/2011/04/11/3 http://archives.pureftpd.org/archives.cgi?100:mss:3906:201103:cpeojfkblajnpinkeadd http://archives.pureftpd.org/archives.cgi?100:mss:3910:201103:cpeojfkblajnpinkeadd http://secunia.com/advisories/43988 http://secunia.com/advisories/44548 SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.