CVE-2022-22998

Name of the Vulnerable Software and Affected Versions Western Digital EdgeRover versions prior to 1.5.1-594

Description A critical error has been discovered in Western Digital's EdgeRover desktop application, which poses a threat of privilege escalation in Windows and macOS, potentially allowing attackers to access confidential information and perform DoS attacks. The vulnerability is an error that allows unauthorized access to restricted directories and files. It is estimated that a significant number of people use EdgeRover for data management, given Western Digital's success as a manufacturer and retailer of digital data storage products.

Recommendations To resolve the issue, update Western Digital EdgeRover to version 1.5.1-594 or later. As a temporary workaround, consider using the default file manager that comes with your operating system to minimize the risk of exploitation.