Vulnerability identifier: #VU18809
Vulnerability risk: Low
CVSSv3.1: 7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-732
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
exacqVision Enterprise System Manager
Server applications /
SCADA systems
Vendor: Johnson Controls
Description
The vulnerability allows a local attacker to bypass authorization on the target system.
The vulnerability exists due to the software allows by default excessive permissions to directories granted to authorized, low-privilege system accounts. A local authenticated attacker can make application file changes and escalate privilege on the system.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
exacqVision Enterprise System Manager: 5.12.2
External links
http://ics-cert.us-cert.gov/advisories/ICSA-19-164-01
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.