Vulnerabilities > Westerndigital > Edgerover

DATE CVE VULNERABILITY TITLE RISK
2022-01-13 CVE-2022-22988 Incorrect Permission Assignment for Critical Resource vulnerability in Westerndigital Edgerover 0.25
File and directory permissions have been corrected to prevent unintended users from modifying or accessing resources.
network
low complexity
westerndigital CWE-732
critical
 9.1
9.1
2021-06-11 CVE-2021-33205 Unspecified vulnerability in Westerndigital Edgerover
Western Digital EdgeRover before 0.25 has an escalation of privileges vulnerability where a low privileged user could load malicious content into directories with higher privileges, because of how Node.js is used.
network
low complexity
westerndigital
6.5
6.5