Addressed a remote code execution vulnerability by resolving a command injection vulnerability and closing an AWS S3 bucket that potentially allowed an attacker to execute unsigned code on My Cloud Home devices.
Credits
Western Digital would like to thank Viettel Cyber Security for reporting this issue.
