Improper Privilege Management in Jungo WinDriver Software
CVE-2023-51776

7.8HIGH

Key Information:

Vendor: Jungo
Status: Windriver
Vendor: CVE Published:; 2 July 2024

What is CVE-2023-51776?

Jungo WinDriver versions before 12.1.0 are prone to an improper privilege management issue that enables local attackers to escalate their privileges. This vulnerability may give unauthorized users the ability to execute arbitrary code on affected systems. Attackers gaining such access could potentially manipulate system functions and compromise security, making it essential for users to address this vulnerability through appropriate software updates.

References

https://jungo.com/windriver/versions/

https://www.mitsubishielectric.com/en/psirt/vulnerability...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-1...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 2, 2024
Vulnerability Reserved
Dec 25, 2023