PT-2017-12654 · Azeotech · Daqfactory

Publicado

2017-09-09

·

Atualizado

2019-10-09

·

CVE-2017-12699

CVSS v3.1

7.1

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions AzeoTech DAQFactory versions prior to 17.1
Description An issue with incorrect default permissions was found, allowing local, non-administrative users to potentially replace or modify original application files with malicious ones.
Recommendations For versions prior to 17.1, update to version 17.1 or later to resolve the issue.

Correção

Incorrect Default Permissions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-276

Identificadores relacionados

CVE-2017-12699

Produtos afetados

Daqfactory