Western Digital’s EdgeRover desktop app for Windows and Mac is vulnerable to local privilege escalation and sandboxing escape bugs, which could allow sensitive information disclosure or denial of service (DoS) attacks .
EdgeRover is a centralized content management solution for Western Digital and SanDisk products that brings together multiple digital storage devices into a single management interface.
It is a proprietary software solution that aims to improve usability and convenience by providing powerful content search, filtering, categorization, privacy settings, collection creation, duplicate detection and other features.
Since Western Digital is one of the most successful manufacturers and retailers of digital storage products in the world, a significant number of people are likely using EdgeRover for data management.
CVE-2022-22998 is a directory traversal flaw that allows unauthorized access to restricted directories and files. The vulnerability has been assigned a CVSS v3 severity rating of 9.1, indicating that it is critical.
Western Digital’s brief advisory doesn’t go into detail about the vulnerability, so it’s unclear whether it’s a DLL hijacking bug that allows local elevation of privilege or a bug that allows access to unprivileged data locations. Western Digital, on the other hand, is advising customers to update their EdgeRover desktop apps to version 1.5.1-594 or later, which was released last week.
CVE-2022-22998 is a directory traversal flaw that allows unauthorized access to restricted directories and files. The vulnerability has been assigned a CVSS v3 severity rating of 9.1, indicating that it is critical.
Western Digital’s brief advisory doesn’t go into detail about the vulnerability, so it’s unclear whether it’s a DLL hijacking bug that allows local elevation of privilege or a bug that allows access to unprivileged data locations.
To address these vulnerabilities, Western Digital is advising customers to update their EdgeRover desktop applications to version 1.5.1-594 or later, which was released last week. Threat researcher Xavier Danest discovered the flaw and responsibly reported it to the vendor.
It is not clear if the vulnerability has been actively exploited; Bleeping Computer has contacted the hardware juggernaut for more information.
It should be noted that for a malicious actor to exploit this vulnerability and steal your data, your system has most likely already been compromised in some way.
