Illumina: >> Iscan Firmware >> 4.0.0 Security Vulnerabilities
Instruments with Illumina Universal Copy Service v1.x and
v2.x contain an unnecessary privileges vulnerability. An unauthenticated
malicious actor could upload and execute code remotely at the operating system
level, which could allow an attacker to change settings, configurations,
software, or access sensitive data on the affected product.
CVSS Score
7.4
EPSS Score
0.003
Published
2023-04-28
Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could use UCS to listen on all IP addresses, including those capable of accepting remote communications.
CVSS Score
10.0
EPSS Score
0.001
Published
2023-04-28