VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Illumina
>
Local RUN Manager
> 3.1
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-06-24
CVE-2022-1517
Improper Privilege Management vulnerability in Illumina Local RUN Manager 1.3/2.0/3.1
LRM utilizes elevated privileges.
network
low complexity
illumina
CWE-269
critical
9.8
9.8
2022-06-24
CVE-2022-1518
Path Traversal vulnerability in Illumina Local RUN Manager 1.3/2.0/3.1
LRM contains a directory traversal vulnerability that can allow a malicious actor to upload outside the intended directory structure.
network
low complexity
illumina
CWE-22
7.5
7.5
2022-06-24
CVE-2022-1519
Unrestricted Upload of File with Dangerous Type vulnerability in Illumina Local RUN Manager 1.3/2.0/3.1
LRM does not restrict the types of files that can be uploaded to the affected product.
network
low complexity
illumina
CWE-434
critical
10.0
10
2022-06-24
CVE-2022-1521
Missing Authorization vulnerability in Illumina Local RUN Manager 1.3/2.0/3.1
LRM does not implement authentication or authorization by default.
network
low complexity
illumina
CWE-862
critical
9.1
9.1
2022-06-24
CVE-2022-1524
Cleartext Transmission of Sensitive Information vulnerability in Illumina Local RUN Manager 1.3/2.0/3.1
LRM version 2.4 and lower does not implement TLS encryption.
network
illumina
CWE-319
4.3
4.3