CVE-2021-33205

Western Digital EdgeRover before 0.25 has an escalation of privileges vulnerability where a low privileged user could load malicious content into directories with higher privileges, because of how Node.js is used. An attacker can gain admin privileges and carry out malicious activities such as...

EUVD-2021-19917

Malware in sbrugna...

CVE-2022-22988 Insecure file and directory permissions on EdgeRover

File and directory permissions have been corrected to prevent unintended users from modifying or accessing resources. It would be more difficult for an authenticated attacker to now traverse through the files and directories. This can only be exploited once an attacker has already found a way to...

PT-2022-1880 · Edgerover · Edgerover

Name of the Vulnerable Software and Affected Versions: EdgeRover versions prior to 1.5.1-594 Description: The issue is related to insufficient permission assignment checks for a critical resource in the EdgeRover application, which can be exploited by a remote attacker to elevate privileges or...

Western Digital EdgeRover 安全漏洞

Western Digital EdgeRover is a personal content application from Western Digital. Western Digital EdgeRover has a security vulnerability that could be exploited by an attacker to modify or access confidential resources...

Unspecified Vulnerability in Western Digital EdgeRover

Western Digital EdgeRover is a personal content application from Western Digital USA. A security vulnerability existed prior to version 0.25 of Western Digital EdgeRover, which stems from the way Node.js is used, where a low-privileged user could load malicious content into a directory with highe...

CVE-2021-33205

Western Digital EdgeRover before 0.25 has an escalation of privileges vulnerability where a low privileged user could load malicious content into directories with higher privileges, because of how Node.js is used. An attacker can gain admin privileges and carry out malicious activities such as...

Privilege escalation

Western Digital EdgeRover before 0.25 has an escalation of privileges vulnerability where a low privileged user could load malicious content into directories with higher privileges, because of how Node.js is used. An attacker can gain admin privileges and carry out malicious activities such as...

CVE-2021-33205

CVE-2021-33205 affects Western Digital EdgeRover prior to version 0.25. The vulnerability allows a low-privileged user to escalate privileges by loading malicious content into directories with higher privileges due to how Node.js is used, enabling an attacker to gain admin privileges and perform ...

CVE-2021-33205

Western Digital EdgeRover before 0.25 has an escalation of privileges vulnerability where a low privileged user could load malicious content into directories with higher privileges, because of how Node.js is used. An attacker can gain admin privileges and carry out malicious activities such as...