Weak Signature Checks in Ip-label Newtest Robot Application Allow Privilege Escalation

Weak Signature Checks in Ip-label Newtest Robot Application Allow Privilege Escalation

CVE-2022-23334 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The Robot application in Ip-label Newtest before v8.5R0 was discovered to use weak signature checks on executed binaries, allowing attackers to have write access and escalate privileges via replacing NEWTESTREMOTEMANAGER.EXE.

Learn more about our Cis Benchmark Audit For Robot Operating System.