CVE-2022-23921
CVE-2022-23921 affects GE Proficy CIMPLICITY-IPM. Root cause: improper privilege management (CWE-269) leading to local privilege escalation and code execution. Exploitation requires local access: attacker must log in to a CIMPLICITY machine where the CIMPLICITY server is not running a project and...