CVE-2019-6517
MEDIUMBD FACSLyric and FACSLyric IVD - Improper Access Control
Title source: llmDescription
BD FACSLyric Research Use Only, Windows 10 Professional Operating System, U.S. and Malaysian Releases, between November 2017 and November 2018 and BD FACSLyric IVD Windows 10 Professional Operating System US release does not properly enforce user access control to privileged accounts, which may allow for unauthorized access to administrative level functions.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/106766
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSMA-19-029-02
Scores
CVSS v3
6.8
EPSS
0.0042
EPSS Percentile
33.5%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-284
Status
published
Products (2)
bd/facslyric
bd/facslyric_ivd
Published
Feb 06, 2019
Tracked Since
Feb 18, 2026