WDC-20011 Western Digital Dashboard, Privilege Escalation

Western Digital Dashboard, Privilege Escalation

WDC Tracking Number: WDC-20011
Product Line: Western Digital Dashboard
Published: December 11, 2020

Last Updated: December 11, 2020

Description

Western Digital Dashboard version 3.1.2.5 was affected by a DLL hijacking vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the system user. An update that addresses the vulnerability is available.

Product Impact

Minimum Fix Version

Last Updated

Western Digital Dashboard

3.2.2.9

December 11, 2020

Update Availability/Remediation

To install or uninstall Western Digital Dashboard, please download and run the latest version of the installer.

Advisory Summary

Resolved a DLL hijacking vulnerability in the Western Digital Dashboard which could allow malicious users to carry out an escalation of privileges. Using the latest installer to install or uninstall the application will mitigate this potential vulnerability.

CVE Number: CVE-2020-29654
Reported by: Tuan Vu Pham aka LangTuBongDem (Member of STeam)

Add up to 4 products

{{ skuObj.title.length

Compare

Details & Exclusions

Sign In

Resend Verification Email

Reset Password

{{promotion.info.promoTitle}}

{{promotion.info.promoTitle}}

{{promotion.info.desc}}

Western Digital Dashboard, Privilege Escalation

Description

Update Availability/Remediation

Advisory Summary

News and updates straight to your inbox