Subscribe

Western Digital Fixes Critical Flaw Impacting My Cloud NAS Devices

March 28, 2022

Storage data company, Western Digital has fixed a critical severity flaw impacting My Cloud OS 5 devices.

The flaw tracked as CCE-2021-44142 can be exploited by unauthenticated threat actors to gain remote code execution with root privileges.

Western Digital was able to fix the flaw by removing the “fruit” VFS module from the list of configured VFS objects. The company also changed the EA support configuration in My Cloud OS 5 Firmware 5.21.104.

Vulnerable devices exposed to CVE-2021-44142 attacks include My Cloud PR2100, My Cloud PR 4100, My Cloud EX4100, My Cloud EX2 Ultra, My Cloud Mirror Gen 2, My Cloud DL2100, My Cloud DL4100, My Cloud EX2100, My Cloud, and WD Cloud.

The hard disk drive manufacturer advised customers to update their devices to the latest firmware. To do this, they are advised to click the update alert as soon as possible.

Western Digital also fixed a critical vulnerability in the open-source Netatalk Apple File Protocol fileserver. The fileserver is used to access network shares and carry out Time Machine backups.

For more information, read the original story in BleepingComputer.

Top Stories

CIOCAN launches memorial award honouring Canadian IT leader Fawn Annan

Check Point launches Canada-only security region to meet rising data residency demands

OpenAI amends Pentagon deal after backlash over surveillance concerns

QuitGPT: OpenAI faces consumer backlash after DoD deal

Bell, Telus withdraw CRTC complaints over network sharing

eBay cutting 800 jobs amid strategic realignment

Related Articles

Check Point launches Canada-only security region to meet rising data residency demands

March 5, 2026 Check Point Software on Wednesday launched a dedicated Canada data region for its CloudGuard Web Application Firewall more...

API key breach triggers $82K Gemini bill for developer team

March 5, 2026 A small development company in Mexico says a compromised Google Cloud API key triggered more than $82,000 more...

OpenAI developing GitHub rival after service disruptions 

March 4, 2026 OpenAI is developing an internal code-hosting platform that could compete with Microsoft-owned GitHub, according to a report more...

Accenture acquires Ziff Davis Connectivity division in $1.2B deal

March 4, 2026 Ziff Davis has agreed to sell its Connectivity division, including Ookla’s Speedtest and Downdetector, to Accenture for more...

Picture of TND Newsdesk

TND Newsdesk

Picture of TND Newsdesk

TND Newsdesk

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.