An issue was discovered on Western Digital My Cloud OS 5 devices before 5.07.118. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to gain access to the device.
Weakness: Improper Authentication
When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.
This section is open source, for any additional information that enhances or clarifies the official advisory above.
Exploits for CVE-2020-29563 are not publicly available.