3 matches found
CVE-2022-35872
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition 8.1.15 b2022030114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...
CVE-2022-35872
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition 8.1.15 b2022030114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...
CVE-2022-35872
CVE-2022-35872 affects Inductive Automation Ignition 8.1.15 (b2022030114). The issue is in the ZIP file parsing logic where untrusted data is deserialized due to inadequate validation, enabling remote code execution with SYSTEM privileges. Exploitation requires user interaction (target visits a m...