Western Digital · Western Digital My Cloud · CVE-2022-29838
**Name of the Vulnerable Software and Affected Versions**
Western Digital My Cloud versions prior to 5.25.124
**Description**
The issue is related to an Improper Authentication vulnerability in the encrypted volumes and auto mount features of Western Digital My Cloud devices. This vulnerability allows insecure direct access to the drive information in the case of a device reset.
**Recommendations**
For Western Digital My Cloud versions prior to 5.25.124, update to version 5.25.124 or later to resolve the issue.