When the installation directory does not have sufficiently restrictive file permissions, an attacker can modify files in the installation directory to cause execution of malicious code.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2024, 20:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
07 Aug 2023, 19:34
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-276 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
| CPE | cpe:2.3:a:arm:linaro_forge:*:*:*:*:*:*:*:* cpe:2.3:a:arm:arm_compiler:*:*:*:*:*:*:*:* cpe:2.3:a:arm:gnu_toolchain:*:*:*:*:*:*:*:* cpe:2.3:a:arm:arm_development_studio:*:*:*:*:*:*:*:* cpe:2.3:a:arm:arm_compiler_for_embedded_fusa:6.16:*:*:*:lts:*:*:* cpe:2.3:a:arm:arm_compiler_for_functional_safety:6.6:*:*:*:*:*:*:* cpe:2.3:a:arm:ds_development_studio:*:*:*:*:*:*:*:* cpe:2.3:a:arm:keil_mdk:*:*:*:*:*:*:*:* cpe:2.3:a:arm:fast_models:*:*:*:*:*:*:*:* cpe:2.3:a:arm:arm_mobile_studio:*:*:*:*:*:*:*:* cpe:2.3:a:arm:mbed_studio:*:*:*:*:*:*:*:* |
|
| First Time |
Arm fast Models
Arm ds Development Studio Arm arm Development Studio Arm keil Mdk Arm arm Compiler For Functional Safety Arm mbed Studio Arm arm Compiler For Embedded Fusa Arm Arm arm Mobile Studio Arm linaro Forge Arm arm Compiler Arm gnu Toolchain |
|
| References | (MISC) https://developer.arm.com/documentation/ka005596/latest - Vendor Advisory |
27 Jul 2023, 22:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-07-27 22:15
Updated : 2024-02-13 20:15
NVD link : CVE-2022-43701
Mitre link : CVE-2022-43701
CVE.ORG link : CVE-2022-43701
JSON object : View
Products Affected
arm
- gnu_toolchain
- mbed_studio
- arm_compiler_for_functional_safety
- arm_mobile_studio
- keil_mdk
- linaro_forge
- arm_compiler_for_embedded_fusa
- fast_models
- ds_development_studio
- arm_development_studio
- arm_compiler
CWE
CWE-276
Incorrect Default Permissions