CVE-2026-3315

MEDIUM

ASSA ABLOY Visionline <1.33 - Privilege Escalation

Title source: llm

Description

Incorrect Default Permissions, : Execution with Unnecessary Privileges, : Incorrect Permission Assignment for Critical Resource vulnerability in ASSA ABLOY Visionline on Windows allows Configuration/Environment Manipulation.This issue affects Visionline: from 1.0 before 1.33.

References (2)

[Various Sources] https://https://www.vingcard.com/en/service-and-support/product-security-center

[Various Sources] https://www.vingcard.com/en/service-and-support/product-security-center/hospitality-product-security-advisories

Scores

CVSS v4 5.8

EPSS 0.0001

EPSS Percentile 3.1%

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:L/SA:L/AU:Y/R:U/RE:L/U:Clear

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-276 CWE-250 CWE-732

Status published

Products (1)

ASSA ABLOY/Visionline 1.0 - 1.33

Published Mar 10, 2026

Tracked Since Mar 11, 2026