EdgeRover Desktop App Version 1.4.1-517
WDC Tracking Number: WDC-21013
Product Line: EdgeRover
Published: January 12, 2022
Last Updated: January 12, 2022
Description
EdgeRover was vulnerable to a remote code execution and a denial-of-service vulnerability in the OpenSSL library. These vulnerabilities when successfully exploited could lead to disclosure of sensitive information or denial-of-service.
Advisory Summary
Addressed a remote code execution and denial-of-service vulnerability in EdgeRover by updating the OpenSSL version to 1.1.1d deb10u7. The vulnerability is fixed in the latest EdgeRover version 1.4.1-517.
CVE Number: CVE-2021-3711, CVE-2021-3712