Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-1517
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
3.2.1 EXECUTION WITH UNNECESSARY PRIVILEGES CWE-250
Source: NVD (National Vulnerability Database)
Vulnerability Description
LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an attacker to change settings, configurations, software, or access sensitive data on the affected produc. An attacker could also exploit this vulnerability to access APIs not intended for general use and interact through the network.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
带着不必要的权限执行
Source: NVD (National Vulnerability Database)
Vulnerability Title
Illumina Local Run Manager 代码注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Illumina Local Run Manager(Illumina LRM)是美国Illumina公司的一种集成解决方案。旨在创建测序运行、监控运行状态、分析测序数据和查看结果。 Illumina Local Run Manager 存在安全漏洞,该漏洞源于应用程序二进制文件具有 setuid 位。远程攻击者利用该漏洞可提升系统的权限。以下产品和版本受到影响:In Vitro Diagnostic NextSeq 550Dx 所有版本、In Vitro Diagnostic MiSeq Dx 所有版本
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
IlluminaNextSeq 550Dx LRM Versions 1.3 to 3.1 -
IlluminaMiSeq Dx LRM Versions 1.3 to 3.1 -
IlluminaNextSeq 500 Instrument LRM Versions 1.3 to 3.1 -
IlluminaNextSeq 550 Instrument LRM Versions 1.3 to 3.1 -
IlluminaMiSeq Instrument LRM Versions 1.3 to 3.1 -
IlluminaiSeq 100 Instrument LRM Versions 1.3 to 3.1 -
IlluminaMiniSeq Instrument LRM Versions 1.3 to 3.1 -
II. Public POCs for CVE-2022-1517
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2022-1517
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: NextSeq 550Dx
Same vendor: Illumina
Same weakness: CWE-250
V. Comments for CVE-2022-1517

No comments yet

Leave a comment