Nighthawk software reports vulnerabilities with ReadyNAS Firmware 6.10.9

Lack of any insight or details about the report - how useless information for the average user: We can just guess this security scan want to tell us that http access to the ReadyNAS admin Web is insecure (indeed, ...). Needless to say, at the current EoL status of ReadyNAS, it's more than unlikely this nice, user-friendly default will be removed.

I agree with @schumaku that the lack of detail in the report makes it not actionable.

What services do you have enabled on the NAS?

Do you have any ports forwarded to the NAS in the router?

Is your NAS set up to allow anonymous access to shares?

Another possibility is that the NAS is allowing SMB 1 connections - which you could disable is smbplus is installed.

Thank you @schumaku and @StephenB.

I did have SMB and iTunes enabled for some reason. I disabled it. I will post the outcome.

No ports are forwarded.

---

@ikonuk wrote:

I did have SMB and iTunes enabled for some reason. I disabled it. I will post the outcome.

---

Curious how one does use a NAS (and for what purpose) without the SMB protocol? Could be SMB 1.0 enabled as @StephenB mentioned. The iTunes Service is not security relevant - very different from the default http access ...