exploitDog

CVE-2017-12699

Опубликовано: 09 сент. 2017

Источник: nvd

CVSS3: 7.1

CVSS2: 3.6

EPSS Низкий

Описание

An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones.

Ссылки

http://www.securityfocus.com/bid/100522
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-241-01
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/100522
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-241-01
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:azeotech:daqfactory:*:*:*:*:*:*:*:*

Версия до 16.3 (включая)

EPSS

Процентиль: 20%

0.00065

Низкий

7.1 High

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-276

CWE-276

Связанные уязвимости

GHSA-h5fh-wgq8-2vr7

CVSS3: 7.1

github

больше 3 лет назад

An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones.

EPSS

Процентиль: 20%

0.00065

Низкий

7.1 High

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-276

CWE-276