LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an attacker to change settings, configurations, software, or access sensitive data on the affected produc. An attacker could also exploit this vulnerability to access APIs not intended for general use and interact through the network.
References
Link | Resource |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-22-153-02 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
History
08 Aug 2023, 14:22
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-269 |
01 Jul 2022, 17:07
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-94 | |
CVSS |
v2 : v3 : |
v2 : 10.0
v3 : 9.8 |
CPE | cpe:2.3:h:illumina:miseq:-:*:*:*:*:*:*:* cpe:2.3:h:illumina:nextseq_550dx:-:*:*:*:*:*:*:* cpe:2.3:h:illumina:miseq_dx:-:*:*:*:*:*:*:* cpe:2.3:h:illumina:nextseq_550:-:*:*:*:*:*:*:* cpe:2.3:h:illumina:miniseq:-:*:*:*:*:*:*:* cpe:2.3:a:illumina:local_run_manager:*:*:*:*:*:*:*:* cpe:2.3:h:illumina:iseq_100:-:*:*:*:*:*:*:* cpe:2.3:h:illumina:nextseq_500:-:*:*:*:*:*:*:* |
|
References | (MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-22-153-02 - Third Party Advisory, US Government Resource | |
First Time |
Illumina local Run Manager
Illumina miniseq Illumina miseq Dx Illumina Illumina miseq Illumina iseq 100 Illumina nextseq 500 Illumina nextseq 550 Illumina nextseq 550dx |
24 Jun 2022, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-06-24 15:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-1517
Mitre link : CVE-2022-1517
CVE.ORG link : CVE-2022-1517
JSON object : View
Products Affected
illumina
- nextseq_550dx
- miseq_dx
- miseq
- local_run_manager
- miniseq
- nextseq_550
- iseq_100
- nextseq_500