CVE-2022-31218

Vulnerabilities in the Drive Composer allow a low privileged attacker to create and write to a file anywhere on the file system as SYSTEM with arbitrary content as long as the file does not already exist. The Drive Composer installer file allows a low-privileged user to run a "repair" operation on the product.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:abb:mint_workbench:*:*:*:*:*:*:*:*
cpe:2.3:a:abb:automation_builder:*:*:*:*:*:*:*:*
cpe:2.3:a:abb:drive_composer:*:*:*:*:pro:*:*:*
cpe:2.3:a:abb:drive_composer:*:*:*:*:entry:*:*:*

Information

Published : 2022-06-15 12:15

Updated : 2022-06-24 13:40


NVD link : CVE-2022-31218

Mitre link : CVE-2022-31218


JSON object : View

CWE
CWE-269

Improper Privilege Management

Advertisement

dedicated server usa

Products Affected

abb

  • automation_builder
  • drive_composer
  • mint_workbench