CVE-2022-1524

Name of the Vulnerable Software and Affected Versions Illumina Local Run Manager versions 2.4 and lower

Description The issue is related to the lack of TLS encryption in the implementation of protocols, allowing a malicious actor to perform a man-in-the-middle (MITM) attack on sensitive data in-transit, including credentials. This can compromise the confidentiality of protected information.

Recommendations For versions 2.4 and lower, consider disabling sensitive data transmission until a patch that implements TLS encryption is available. Restrict access to sensitive data to minimize the risk of exploitation. As a temporary workaround, avoid transmitting credentials or other sensitive information using the affected software until a fix is implemented.