PT-2021-17453 · Mesa · Mesa Labs Amegaview

Stephen Yackey

·

Published

2021-12-21

·

Updated

2022-07-29

·

CVE-2021-27445

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Mesa Labs AmegaView versions 3.0 and prior
Description The issue is related to insecure file permissions that could be exploited to escalate privileges on the device.
Recommendations For Mesa Labs AmegaView versions 3.0 and prior, update to a version later than 3.0 to resolve the issue.

Fix

Improper Privilege Management

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-269CWE-732

Related Identifiers

CVE-2021-27445

Affected Products

Mesa Labs Amegaview