Lucene search

[email protected]NVD:CVE-2022-26239

HistoryOct 06, 2022 - 6:15 p.m.

CVE-2022-26239

2022-10-0618:15:56

CWE-732

[email protected]

web.nvd.nist.gov

normand license manager

beckman coulter remisol advance

executable manipulation

library manipulation

sensitive data access

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

12.6%

JSON

The default privileges for the running service Normand License Manager in Beckman Coulter Remisol Advance v2.0.12.1 and prior allows unprivileged users to overwrite and manipulate executables and libraries. This allows attackers to access sensitive data.

Affected configurations

Nvd

Node

beckmancoulterremisol_advanceRange≤2.0.12.1

AND

microsoftwindowsMatch-

VendorProductVersionCPE
beckmancoulterremisol_advance*cpe:2.3:a:beckmancoulter:remisol_advance:*:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
beckmancoulter	remisol_advance	*	cpe:2.3:a:beckmancoulter:remisol_advance::::::::
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*

References

pastebin.com/1QEHrj01

www.beckmancoulter.com/products/clinical-information-management-tools/remisol-advance

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2022-26239

cvelist1 prion1 cve1