Illumina

Local Run Manager

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2022-1517

  • EPSS 0.42%
  • Veröffentlicht 24.06.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 06:40:53

LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an attacker to change settings, configurations, software, or access sensitive data on the affecte...

9.8

CVE-2022-1518

  • EPSS 0.31%
  • Veröffentlicht 24.06.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 06:40:53

LRM contains a directory traversal vulnerability that can allow a malicious actor to upload outside the intended directory structure.

10

CVE-2022-1519

  • EPSS 0.29%
  • Veröffentlicht 24.06.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 06:40:53

LRM does not restrict the types of files that can be uploaded to the affected product. A malicious actor can upload any file type, including executable code that allows for a remote code exploit.

9.1

CVE-2022-1521

  • EPSS 0.19%
  • Veröffentlicht 24.06.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 06:40:53

LRM does not implement authentication or authorization by default. A malicious actor can inject, replay, modify, and/or intercept sensitive data.

5.9

CVE-2022-1524

  • EPSS 0.05%
  • Veröffentlicht 24.06.2022 15:15:09
  • Zuletzt bearbeitet 21.11.2024 06:40:54

LRM version 2.4 and lower does not implement TLS encryption. A malicious actor can MITM attack sensitive data in-transit, including credentials.