CVE-2026-3315

HIGH

ASSA ABLOY Visionline <1.33 - Privilege Escalation

Title source: llm

Description

Incorrect Default Permissions, : Execution with Unnecessary Privileges, : Incorrect Permission Assignment for Critical Resource vulnerability in ASSA ABLOY Visionline on Windows allows Configuration/Environment Manipulation.This issue affects Visionline: from 1.0 before 1.33.

References (2)

Core 2

Core References

Various Sources

https://https://www.vingcard.com/en/service-and-support/product-security-center

Various Sources

https://www.vingcard.com/en/service-and-support/product-security-center/hospitality-product-security-advisories

Scores

CVSS v3 7.8

EPSS 0.0011

EPSS Percentile 1.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-250 CWE-276 CWE-732

Status published

Products (2)

ASSA ABLOY/Visionline 1.0 - 1.33

assaabloy/visionline 1.0.0 - 1.34.0

Published Mar 10, 2026

Tracked Since Mar 11, 2026