CVE-2022-1356 Information

Description

cnMaestro is vulnerable to a local privilege escalation. By default a user does not have root privileges. However a user can run scripts as sudo which could allow an attacker to gain root privileges when running user scripts outside allowed commands.

Reference

https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-04