NVD - CVE-2024-1155

Vulnerability Change Records for CVE-2024-1155

Change History

Initial Analysis by NIST 2/12/2025 1:50:24 PM

Action	Type	Old Value	New Value
Added	CVSS V3.1		NIST AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added	CWE		NIST CWE-863
Added	CPE Configuration		OR cpe:2.3:a:emerson:data_record_ad::::::::* versions up to (including) 2.0.1 cpe:2.3:a:emerson:flexlogger::::::::* versions up to (including) 2022_q3 cpe:2.3:a:emerson:g_web_development_software::::::::* versions up to (including) 2022_q3 cpe:2.3:a:emerson:labview_nxg:5.1::::community:::* cpe:2.3:a:emerson:labview_nxg:5.1::::real-time_module:::* cpe:2.3:a:emerson:labview_nxg:5.1::::web_module:::* cpe:2.3:a:emerson:specification_compliance_manager::::::::* versions up to (including) 2023_q4 cpe:2.3:a:emerson:static_test_software_suite::::::::* versions up to (including) 1.2 cpe:2.3:a:emerson:sts_software_bundle::::::::* versions up to (including) 21.0 cpe:2.3:a:emerson:systemlink_server::::::::* versions up to (excluding) 2024_q1
Changed	Reference Type	https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/incorrect-permissions-for-shared-systemlink-elixir-based-service.html No Types Assigned	https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/incorrect-permissions-for-shared-systemlink-elixir-based-service.html Exploit, Vendor Advisory
Changed	Reference Type	https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/incorrect-permissions-for-shared-systemlink-elixir-based-service.html No Types Assigned	https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/incorrect-permissions-for-shared-systemlink-elixir-based-service.html Exploit, Vendor Advisory