| |
Vulnerability CVE-2018-17931
Published: 2018-10-30
| Description: |
If an attacker has physical access to the VGo Robot (Versions 3.0.3.52164 and 3.0.3.53662. Prior versions may also be affected) they may be able to alter scripts, which may allow code execution with root privileges. |
Type:
CWE-284 (Improper Access Control)
CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
7.2/10 |
10/10 |
3.9/10 |
| Exploit range |
Attack complexity |
Authentication |
Local |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Complete |
Complete |
Complete |
References: |
https://ics-cert.us-cert.gov/advisories/ICSA-18-114-01
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
