Lucene search

[email protected]NVD:CVE-2022-26238

HistoryOct 06, 2022 - 11:15 p.m.

CVE-2022-26238

2022-10-0623:15:10

CWE-732

[email protected]

web.nvd.nist.gov

cve-2022-26238

beckman coulter remisol advance

sensitive data access

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

12.6%

JSON

The default privileges for the running service Normand Service Manager in Beckman Coulter Remisol Advance v2.0.12.1 and prior allows non-privileged users to overwrite and manipulate executables and libraries. This allows attackers to access sensitive data.

Affected configurations

Nvd

Node

beckmancoulterremisol_advanceRange≤2.0.12.1

AND

microsoftwindowsMatch-

VendorProductVersionCPE
beckmancoulterremisol_advance*cpe:2.3:a:beckmancoulter:remisol_advance:*:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
beckmancoulter	remisol_advance	*	cpe:2.3:a:beckmancoulter:remisol_advance::::::::
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*

References

pastebin.com/23N5wcC7

www.beckmancoulter.com/products/clinical-information-management-tools/remisol-advance

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2022-26238

prion1 cvelist1 cve1