CVE-2022-45792

high

Description

Project files may contain malicious contents which the software will use to create files on the filesystem. This allows directory traversal and overwriting files with the privileges of the logged-in user.

References

https://www.dragos.com/advisory/omron-plc-and-engineering-software-network-and-file-format-access/

Details

Source: Mitre, NVD

Published: 2024-01-22

Updated: 2024-01-29

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H