Improper File Permissions in Simcenter STAR-CCM+ Installation Folders

Improper File Permissions in Simcenter STAR-CCM+ Installation Folders

CVE-2022-43517 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A vulnerability has been identified in Simcenter STAR-CCM+ (All versions < V2306). The affected application improperly assigns file permissions to installation folders. This could allow a local attacker with an unprivileged account to override or modify the service executables and subsequently gain elevated privileges.

Learn more about our Web Application Penetration Testing UK.