PT-2025-22535 · Microsoft+1 · Windows+3
Published
2025-05-22
·
Updated
2025-05-22
·
CVE-2024-13948
CVSS v3.1
7.3
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
ASPECT-Enterprise versions through 3.*
NEXUS Series versions through 3.*
MATRIX Series versions through 3.*
Description
The issue is related to insufficient security of Windows permissions for ASPECT configuration toolsets, leading to exposure of configuration information.
Recommendations
For ASPECT-Enterprise versions through 3., update the Windows permissions to fully secure the configuration toolsets.
For NEXUS Series versions through 3., update the Windows permissions to fully secure the configuration toolsets.
For MATRIX Series versions through 3.*, update the Windows permissions to fully secure the configuration toolsets.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Aspect-Enterprise
Matrix Series
Nexus Series
Windows