Local Run Manager Security Vulnerabilities and Issues — Local Run Manager CVE List

Lucene search

IlluminaLocal Run Manager

5 matches found

CVE•added 2022/06/24 3:15 p.m.•2377 views

CVE-2022-1517

LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an attacker to change settings, configurations, software, or access sensitive data on the affected produc. An attacker could also exploit this vul...

10CVSS9.8AI score0.00246EPSS

CVE•added 2022/06/24 3:15 p.m.•75 views

CVE-2022-1521

LRM does not implement authentication or authorization by default. A malicious actor can inject, replay, modify, and/or intercept sensitive data.

9.1CVSS9.4AI score0.00184EPSS

CVE•added 2022/06/24 3:15 p.m.•61 views

CVE-2022-1518

LRM contains a directory traversal vulnerability that can allow a malicious actor to upload outside the intended directory structure.

10CVSS9.6AI score0.00216EPSS

CVE•added 2022/06/24 3:15 p.m.•55 views

CVE-2022-1519

LRM does not restrict the types of files that can be uploaded to the affected product. A malicious actor can upload any file type, including executable code that allows for a remote code exploit.

10CVSS9.6AI score0.0022EPSS

CVE•added 2022/06/24 3:15 p.m.•46 views

CVE-2022-1524

LRM version 2.4 and lower does not implement TLS encryption. A malicious actor can MITM attack sensitive data in-transit, including credentials.

7.4CVSS6.1AI score0.0005EPSS