Security Advisory

CVE-2019-16399

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-09-18 13:06:13

Last updated 2024-08-05 01:17:39

Assigner mitre

State PUBLISHED

Description

Western Digital WD My Book World through II 1.02.12 suffers from Broken Authentication, which allows an attacker to access the /admin/ directory without credentials. An attacker can easily enable SSH from /admin/system_advanced.php?lang=en and login with the default root password welc0me.

← Browse all CVEs View on cve.org ↗