Draeger: ICMHelper is vulnerable to a privilege escalation due to missing authorization

August 5, 2025 invoker category_cve

CVE Details

Basic Information

Title Draeger: ICMHelper is vulnerable to a privilege escalation due to missing authorization
Type cve
Published 2025-08-05T08:06:08.584Z
Modified 2025-08-05T08:06:08.584Z

Product Information

Vendor Draeger
Product Draeger ICMHelper
Version 0

CVSS Information

Base Score 7.8 (HIGH)
Attack Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Analysis

AI Description A low-privileged local attacker can exploit a privilege escalation vulnerability in Draeger ICMHelper due to missing authorization checks, allowing unauthorized access and potential system compromise.
AI Severity High
AI Vendor Draeger
AI Product ICMHelper
AI Version 0

Affected Products

  • Draeger Draeger ICMHelper 0

Additional Information

CWE List CWE-862
Source CERTVDE

Description

A low privileged local attacker can interact with the affected service although user-interaction should not be allowed.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.