Ge ifix scada4/2/2023 ![]() ![]() COMPANY HEADQUARTERS LOCATION: United States.CRITICAL INFRASTRUCTURE SECTORS: Multiple.A CVSS v3 base score of 6.1 has been calculated the CVSS vector string is ( AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N). This may allow privilege escalation.ĬVE-2019-18255 has been assigned to this vulnerability. The affected product allows a local authenticated user to modify system-wide iFIX configurations through section objects. 3.2.2 INCORRECT PERMISSION ASSIGNMENT FOR CRITICAL RESOURCE CWE-732 ![]() This may allow privilege escalation.ĬVE-2019-18243 has been assigned to this vulnerability. The affected product allows a local authenticated user to modify system-wide iFIX configurations through the registry. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTSģ.2 VULNERABILITY OVERVIEW 3.2.1 INCORRECT PERMISSION ASSIGNMENT FOR CRITICAL RESOURCE CWE-732 Successful exploitation of these vulnerabilities could allow an attacker to escalate their privileges. Vulnerabilities: Incorrect Permission Assignment for Critical Resource. ![]()
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |