2 matches found
CVE-2022-23921 ICSA-22-053-01 GE Proficy CIMPLICITY-IPM
Exploitation of this vulnerability may result in local privilege escalation and code execution. GE maintains exploitation of this vulnerability is only possible if the attacker has login access to a machine actively running CIMPLICITY, the CIMPLICITY server is not already running a project, and t...
CVE-2022-23921
CVE-2022-23921 affects GE Proficy CIMPLICITY-IPM. Root cause: improper privilege management (CWE-269) leading to local privilege escalation and code execution. Exploitation requires local access: attacker must log in to a CIMPLICITY machine where the CIMPLICITY server is not running a project and...