Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 1:38 a.m.6 views

CVE-2024-11220

A local low-level user on the server machine with credentials to the running OAS services can create and execute a report with an rdlx file on the server system itself. Any code within the rdlx file of the report executes with SYSTEM privileges, resulting in privilege escalation...

8.5CVSS7.1AI score0.00152EPSS
Exploits0References1
NVD
NVD
added 2024/12/06 6:15 p.m.53 views

CVE-2024-11220

A local low-level user on the server machine with credentials to the running OAS services can create and execute a report with an rdlx file on the server system itself. Any code within the rdlx file of the report executes with SYSTEM privileges, resulting in privilege escalation...

8.5CVSS0.00152EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/06 5:45 p.m.12 views

CVE-2024-11220 Open Automation Software Incorrect Execution-Assigned Permissions

A local low-level user on the server machine with credentials to the running OAS services can create and execute a report with an rdlx file on the server system itself. Any code within the rdlx file of the report executes with SYSTEM privileges, resulting in privilege escalation...

8.5CVSS7.1AI score0.00152EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/06 5:45 p.m.40 views

CVE-2024-11220 Open Automation Software Incorrect Execution-Assigned Permissions

A local low-level user on the server machine with credentials to the running OAS services can create and execute a report with an rdlx file on the server system itself. Any code within the rdlx file of the report executes with SYSTEM privileges, resulting in privilege escalation...

8.5CVSS0.00152EPSS
Exploits0References2
CVE
CVE
added 2024/12/06 5:45 p.m.64 views

CVE-2024-11220

CVE-2024-11220 affects Open Automation Software (OAS). A local, low-privilege user with credentials to the running OAS services can create and run an rdlx report file on the server , causing code in the rdlx to execute with SYSTEM privileges and perform privilege escalation. Reported impact align...

8.5CVSS7.7AI score0.00152EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder