Incorrect directory permissions for the shared NI RabbitMQ service may allow a local authenticated user to read RabbitMQ configuration information and potentially enable escalation of privileges.
References
Configurations
Configuration 1 (hide)
|
History
12 Feb 2025, 18:50
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/incorrect-permissions-for-shared-systemlink-elixir-based-service.html - Exploit, Vendor Advisory | |
| First Time |
Emerson systemlink Server
Emerson sts Software Bundle Emerson static Test Software Suite Emerson g Web Development Software Emerson specification Compliance Manager Emerson flexlogger Emerson data Record Ad Emerson labview Nxg Emerson |
|
| CPE | cpe:2.3:a:emerson:labview_nxg:5.1:*:*:*:web_module:*:*:* cpe:2.3:a:emerson:specification_compliance_manager:*:*:*:*:*:*:*:* cpe:2.3:a:emerson:g_web_development_software:*:*:*:*:*:*:*:* cpe:2.3:a:emerson:systemlink_server:*:*:*:*:*:*:*:* cpe:2.3:a:emerson:data_record_ad:*:*:*:*:*:*:*:* cpe:2.3:a:emerson:labview_nxg:5.1:*:*:*:real-time_module:*:*:* cpe:2.3:a:emerson:flexlogger:*:*:*:*:*:*:*:* cpe:2.3:a:emerson:labview_nxg:5.1:*:*:*:community:*:*:* cpe:2.3:a:emerson:static_test_software_suite:*:*:*:*:*:*:*:* cpe:2.3:a:emerson:sts_software_bundle:*:*:*:*:*:*:*:* |
|
| CWE | CWE-863 |
Information
Published : 2024-02-20 15:15
Updated : 2025-02-12 18:50
NVD link : CVE-2024-1156
Mitre link : CVE-2024-1156
CVE.ORG link : CVE-2024-1156
JSON object : View
Products Affected
emerson
- labview_nxg
- g_web_development_software
- flexlogger
- systemlink_server
- sts_software_bundle
- specification_compliance_manager
- data_record_ad
- static_test_software_suite