When the installation directory does not have sufficiently restrictive file permissions, an attacker can modify files in the installation directory to cause execution of malicious code.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2024, 20:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
07 Aug 2023, 19:34
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
| CPE | cpe:2.3:a:arm:arm_mobile_studio:*:*:*:*:*:*:*:* cpe:2.3:a:arm:ds_development_studio:*:*:*:*:*:*:*:* cpe:2.3:a:arm:arm_compiler_for_embedded_fusa:6.16:*:*:*:lts:*:*:* cpe:2.3:a:arm:fast_models:*:*:*:*:*:*:*:* cpe:2.3:a:arm:arm_development_studio:*:*:*:*:*:*:*:* cpe:2.3:a:arm:arm_compiler:*:*:*:*:*:*:*:* cpe:2.3:a:arm:arm_compiler_for_functional_safety:6.6:*:*:*:*:*:*:* cpe:2.3:a:arm:gnu_toolchain:*:*:*:*:*:*:*:* cpe:2.3:a:arm:mbed_studio:*:*:*:*:*:*:*:* cpe:2.3:a:arm:keil_mdk:*:*:*:*:*:*:*:* cpe:2.3:a:arm:linaro_forge:*:*:*:*:*:*:*:* |
|
| CWE | CWE-276 | |
| References | (MISC) https://developer.arm.com/documentation/ka005596/latest - Vendor Advisory |
27 Jul 2023, 22:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-07-27 22:15
Updated : 2024-02-13 20:15
NVD link : CVE-2022-43701
Mitre link : CVE-2022-43701
CVE.ORG link : CVE-2022-43701
JSON object : View
Products Affected
arm
- arm_compiler_for_embedded_fusa
- ds_development_studio
- fast_models
- arm_compiler
- arm_compiler_for_functional_safety
- gnu_toolchain
- linaro_forge
- arm_development_studio
- arm_mobile_studio
- keil_mdk
- mbed_studio
CWE
CWE-276
Incorrect Default Permissions