CVE-2022-23104

Name of the Vulnerable Software and Affected Versions WIN-911 versions 2021 R1 through 2021 R2

Description The issue is related to a permissions misconfiguration that may allow a low-privilege attacker to locally write files to the program Operator Workspace directory. This directory holds DLL files and executables, and an attacker could write a malicious DLL file to achieve privilege escalation and obtain the permissions of the user running the program.

Recommendations For WIN-911 versions 2021 R1 through 2021 R2, consider restricting write access to the Operator Workspace directory to prevent malicious file modifications until a fix is available. As a temporary workaround, monitor the directory for any suspicious DLL files and restrict the execution of files from this directory to minimize the risk of exploitation.