ГлавнаяУязвимости → CVE-2022-45792
7.8высокая

CVE-2022-45792

Описание

Project files may contain malicious contents which the software will use to create files on the filesystem. This allows directory traversal and overwriting files with the privileges of the logged-in user.

Затрагиваемое ПО
Omron Sysmac studio
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.dragos.com/advisory/omron-plc-and-engineering-software-network-and-file-format-access/https://www.dragos.com/advisory/omron-plc-and-engineering-software-network-and-file-format-access/