A vulnerability, which was classified as critical, was found in European Chemicals Agency IUCLID 7.10.3 on Windows. Affected is an unknown function of the file iuclid6.exe of the component Desktop Installer. The manipulation leads to incorrect default permissions.
This vulnerability is traded as CVE-2024-0770. The attack needs to be approached locally. There is no exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.