ghsa-qxpm-cp83-p72g
Vulnerability from github
Published
2023-10-10 12:32
Modified
2024-07-09 12:30
Severity
Details
A vulnerability has been identified in SINEC NMS (All versions < V2.0). The affected application assigns improper access rights to specific folders containing executable files and libraries.
This could allow an authenticated local attacker to inject arbitrary code and escalate privileges.
{ "affected": [], "aliases": [ "CVE-2022-30527" ], "database_specific": { "cwe_ids": [ "CWE-732" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2023-10-10T11:15:10Z", "severity": "HIGH" }, "details": "A vulnerability has been identified in SINEC NMS (All versions \u003c V2.0). The affected application assigns improper access rights to specific folders containing executable files and libraries.\n\nThis could allow an authenticated local attacker to inject arbitrary code and escalate privileges.", "id": "GHSA-qxpm-cp83-p72g", "modified": "2024-07-09T12:30:55Z", "published": "2023-10-10T12:32:11Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30527" }, { "type": "WEB", "url": "https://cert-portal.siemens.com/productcert/html/ssa-160243.html" }, { "type": "WEB", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-160243.pdf" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }
Loading...