Vulnerabilities > CVE-2021-22682 - Unspecified vulnerability in Hornerautomation Cscape
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Cscape (All versions prior to 9.90 SP4) is configured by default to be installed for all users, which allows full permissions, including read/write access. This may allow unprivileged users to modify the binaries and configuration files and lead to local privilege escalation.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 25 |