CVE Details: CVE-2023-29066

Description

The FACSChorus software does not properly assign data access privileges for operating system user accounts. A non-administrative OS account can modify information stored in the local application data folders.

Published Date: 2023-11-28
Last Modified Date: 2023-12-05
Severity: LOW
CVSS v3 Score: 3.5
CWE ID: CWE-269
Attack Vector: PHYSICAL
Attack Complexity: LOW
Privileges Required: NONE
User Interaction: NONE
Scope: UNCHANGED
Confidentiality Impact: NONE
Integrity Impact: LOW
Availability Impact: LOW

Back to CVE List