An issue was discovered in Inosoft VisiWin 7 through 2022-2.1 (Runtime RT7.3 RC3 20221209.5). The "%PROGRAMFILES(X86)%\INOSOFT GmbH" folder has weak permissions for Everyone, allowing an attacker to insert a Trojan horse file that runs as SYSTEM. 2024-1 is a fixed version.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-11T00:00:00
Updated: 2024-07-11T19:50:46.552Z
Reserved: 2023-04-28T00:00:00
Link: CVE-2023-31468
JSON object: View
NVD Information
Status : Modified
Published: 2023-09-11T19:15:42.173
Modified: 2024-06-06T06:15:09.003
Link: CVE-2023-31468
JSON object: View
Redhat Information
No data.
CWE