Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Inosoft VisiWin 7 through 2022-2.1 (Runtime RT7.3 RC3 20221209.5). The "%PROGRAMFILES(X86)%\INOSOFT GmbH" folder has weak permissions for Everyone, allowing an attacker to insert a Trojan horse file that runs as SYSTEM. 2024-1 is a fixed version.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Inosoft VisiWin 安全漏洞
Vulnerability Description
Inosoft VisiWin是Inosoft公司的一款用于人机界面(HMI)和过程数据可视化的软件平台。 Inosoft VisiWin 7 2022-2.1版本存在安全漏洞,该漏洞源于安装时创建不安全的文件夹,这可能允许恶意用户操纵文件内容或更改合法文件(例如,VisiWin7.Server.Manager.exe,其运行方式为系统权限)来危害系统或获得提升特权。
CVSS Information
N/A
Vulnerability Type
N/A