CVE-2023-29066 Information

Description

The FACSChorus software does not properly assign data access privileges for operating system user accounts. A non-administrative OS account can modify information stored in the local application data folders.

Reference

https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-facschorus-software