Access Restriction Bypass in PowerAct Pro by Omron
CVE-2018-16207

6.5MEDIUM

Key Information:

Vendor

Omron Social Solutions Co.,ltd.

Status
Poweract Pro Master Agent For Windows
Vendor
CVE Published:
27 March 2019

What is CVE-2018-16207?

A flaw in PowerAct Pro Master Agent for Windows enables authenticated attackers to circumvent access restrictions, which could lead to unauthorized modifications of files. This vulnerability arises from unspecified vectors that provide a pathway for exploitation, placing sensitive data and system integrity at risk. Users of affected versions should ensure they are aware of this security issue and consider upgrading or applying necessary mitigations.

Affected Version(s)

PowerAct Pro Master Agent for Windows Version 5.13 and earlier

References

https://www.oss.omron.co.jp/ups/info/topics/190326.html
x_refsource_MISC
https://www.oss.omron.co.jp/ups/support/download/soft/pow...
x_refsource_MISC
https://jvn.jp/en/jp/JVN63981842/index.html
x_refsource_MISC

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.