What's the fuss about the WD My Cloud latest vulnerability ? CVE-2018-17153

Hello guys,

I don’t really understand all the noise around the latest vulnerability that has been disclosed

I have checked with shodan and it looks like 99.9% of those my cloud boxes give you an 403 or 404 errors when trying to connect on port 80 or 443, making the exloit impossible. So it looks like you could only use that exploit if you are on the same local network that the box, which in most of the cases would make the attack useless as it is your own box… https://appsync.biz/speed-test/ https://appsync.biz/scrabble-word-finder/

Am I missing something here ?