Western Digital has released critical security updates to address a major vulnerability affecting several My Cloud network-attached storage (NAS) devices. The flaw, identified as CVE-2025-30247, could allow remote attackers to execute arbitrary code, risking complete device takeover. The company has fixed this high-severity issue with the release of My Cloud Firmware version 5.31.108 on September 24, 2025.
Exploiting this remote code execution vulnerability could give unauthorized attackers access to the NAS device’s security protocols, potentially leading to data theft, malware or ransomware installation, and the device’s integration into a botnet for further malicious activities. Given that NAS devices often store sensitive personal and business data, such a breach could have devastating consequences.
Western Digital strongly advises all users to promptly update their devices to the latest firmware to mitigate the threat. The update can be easily applied via the firmware update prompt within the device’s administrative interface. Thanks are extended to the security researcher w1th0ut for identifying and responsibly reporting this vulnerability, enabling the company to develop and distribute an appropriate patch.
The critical security update is crucial for a range of products within the My Cloud family. Western Digital has confirmed that the following devices are at risk and should be updated to firmware version 5.31.108 or later to protect against CVE-2025-30247: My Cloud PR2100, My Cloud PR4100, My Cloud EX4100, My Cloud EX2 Ultra, My Cloud Mirror Gen 2, My Cloud DL2100, My Cloud EX2100, My Cloud DL4100, My Cloud WDBCTLxxxxxx-10, and My Cloud.
This incident highlights the ongoing security vulnerabilities associated with internet-connected storage solutions. Cybercriminals often target unpatched NAS devices due to the valuable data they typically contain. Implementing security updates promptly upon release is one of the most effective strategies users can adopt to protect their data from unauthorized access and cyber threats. Users are also encouraged to review their device configurations and enable automatic updates whenever possible to enhance their security posture.
