CVE-2024-0770 | European Chemicals Agency IUCLID 7.10.3 on Windows Desktop Installer iuclid6.exe default permission

Inserito da Angelo Barbosa | Gen 21, 2024 | CVE

A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID 7.10.3 on Windows. Affected is an unknown function of the file iuclid6.exe of the component Desktop Installer. The manipulation leads to incorrect default permissions.

This vulnerability is traded as CVE-2024-0770. The attack needs to be approached locally. There is no exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-0770 | European Chemicals Agency IUCLID 7.10.3 on Windows Desktop Installer iuclid6.exe default permission

Post correlati

CVE-2024-4967 | SourceCodester Interactive Map with Marker 1.0 delete-mark.php mark sql injection

CVE-2024-33602 | GNU C Library NSS Callback buffer overflow

CVE-2024-43339 | WebinarPress Plugin up to 1.33.20 on WordPress cross-site request forgery

CVE-2022-43915 | IBM App Connect Enterprise Certified Container up to 12.1 permission assignment (XFDB-241037)