exploitDog

CVE-2022-26235

Опубликовано: 06 окт. 2022

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

A vulnerability was discovered in the Remisol Advance v2.0.12.1 and below for the Normand Message Server. On installation, the permissions set by Remisol Advance allow non-privileged users to overwrite and/or manipulate executables and libraries that run as the elevated SYSTEM user on Windows.

Ссылки

https://pastebin.com/amgw9pE7
Third Party Advisory
https://www.beckmancoulter.com/products/clinical-information-management-tools/remisol-advance
Product
Vendor Advisory
https://pastebin.com/amgw9pE7
Third Party Advisory
https://www.beckmancoulter.com/products/clinical-information-management-tools/remisol-advance
Product
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:beckmancoulter:remisol_advance:*:*:*:*:*:*:*:*

Версия до 2.0.12.1 (включая)

EPSS

Процентиль: 10%

0.00034

Низкий

7.8 High

CVSS3

Дефекты

CWE-276

Связанные уязвимости

GHSA-gp43-9g7v-9r77

CVSS3: 7.8

github

больше 3 лет назад

A vulnerability was discovered in the Remisol Advance v2.0.12.1 and below for the Normand Message Server. On installation, the permissions set by Remisol Advance allow non-privileged users to overwrite and/or manipulate executables and libraries that run as the elevated SYSTEM user on Windows.

EPSS

Процентиль: 10%

0.00034

Низкий

7.8 High

CVSS3

Дефекты

CWE-276