A vulnerability was discovered in the Remisol Advance v2.0.12.1 and below for the Normand Message Server. On installation, the permissions set by Remisol Advance allow non-privileged users to overwrite and/or manipulate executables and libraries that run as the elevated SYSTEM user on Windows.
References
Link | Resource |
---|---|
https://pastebin.com/amgw9pE7 | Third Party Advisory |
https://www.beckmancoulter.com/products/clinical-information-management-tools/remisol-advance | Product Vendor Advisory |
https://pastebin.com/amgw9pE7 | Third Party Advisory |
https://www.beckmancoulter.com/products/clinical-information-management-tools/remisol-advance | Product Vendor Advisory |
Configurations
History
21 Nov 2024, 06:53
Type | Values Removed | Values Added |
---|---|---|
References | () https://pastebin.com/amgw9pE7 - Third Party Advisory | |
References | () https://www.beckmancoulter.com/products/clinical-information-management-tools/remisol-advance - Product, Vendor Advisory |
11 Oct 2022, 15:07
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-10-06 18:15
Updated : 2024-11-21 06:53
NVD link : CVE-2022-26235
Mitre link : CVE-2022-26235
CVE.ORG link : CVE-2022-26235
JSON object : View
Products Affected
beckmancoulter
- remisol_advance
CWE
CWE-276
Incorrect Default Permissions