CVE-2024-0770

Name of the Vulnerable Software and Affected Versions European Chemicals Agency IUCLID version 7.10.3

Description A critical vulnerability was found in the European Chemicals Agency IUCLID, affecting an unknown function of the file iuclid6.exe of the component Desktop Installer. The manipulation leads to incorrect default permissions. The attack needs to be approached locally.

Recommendations For version 7.10.3, as a temporary workaround, consider restricting access to the iuclid6.exe file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.