Support Product Security

EdgeRover Desktop App Version 1.4.1-517

WDC Tracking Number: WDC-21013
Product Line: EdgeRover
Published: January 12, 2022

Last Updated:  January 12, 2022

Description

EdgeRover was vulnerable to a remote code execution and a denial-of-service vulnerability in the OpenSSL library. These vulnerabilities when successfully exploited could lead to disclosure of sensitive information or denial-of-service.

Product Impact
Minimum Fix Version
Last Updated
EdgeRover Mac Desktop App
1.4.1-517
December 15, 2021
EdgeRover Windows Desktop App
1.4.1-517
December 15, 2021

Advisory Summary

Addressed a remote code execution and denial-of-service vulnerability in EdgeRover by updating the OpenSSL version to 1.1.1d deb10u7. The vulnerability is fixed in the latest EdgeRover version 1.4.1-517.

CVE Number: CVE-2021-3711, CVE-2021-3712

Compare