Vulnerabilities in the Drive Composer allow a low privileged attacker to create and write to a file anywhere on the file system as SYSTEM with arbitrary content as long as the file does not already exist. The Drive Composer installer file allows a low-privileged user to run a "repair" operation on the product.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-06-15 12:15
Updated : 2022-06-24 13:33
NVD link : CVE-2022-31217
Mitre link : CVE-2022-31217
JSON object : View
CWE
CWE-269
Improper Privilege Management
Products Affected
abb
- automation_builder
- drive_composer
- mint_workbench