ATTENTION: For anyone who lost data on your My Book Live
Just click the links WD provided:
then scroll down and click CVE number
NVD - CVE-2018-18472 Severity 9.8/10 Critical about as bad as security could possibly be.
Western Digital WD My Book Live (all versions) has a root Remote Command Execution bug via shell metacharacters in the /api/1.0/rest/language_configuration language parameter. It can be triggered by anyone who knows the IP address of the affected device.
The My Book Live remote execution was known to WD certainly in 2018.
Anyone who lost data should be asking WD to pay the big bucks to have your data restored. And it is so easy to exploit. Anyone in world just needs the IP address and they can run anything they want.