2 matches found
CVE-2022-28702
ABB e-Design vulnerability CVE-2022-28702 involves incorrect default permissions that allow a local attacker to install malicious software with SYSTEM permissions, affecting affected ABB e-Design installations. The issue stems from permissions handling in the installer, enabling privilege escalat...
CVE-2022-29483
ABB e-Design contains an Incorrect Default Permissions vulnerability in the installer that can allow a local attacker to install malware and execute with SYSTEM privileges. The issue arises from the installer’s handling of permissions and a symbolic link abuse path, enabling privilege escalation ...