CVE-2024-6619 is a high-severity incorrect permission vulnerability in Ocean Data Systems Dream Report 2023 and AVEVA Reports for Operations 2023. Published by CISA on August 13, 2024, this vulnerability allows a local unprivileged attacker to escalate privileges and potentially cause denial-of-service conditions. The CVSS 3.1 score of 7.8 reflects high impacts to confidentiality, integrity, and availabil [truncated]
A path traversal vulnerability in Ocean Data Systems Dream Report 2023 allows local attackers to achieve remote code execution via malicious DLL injection. The flaw, published August 13, 2024, carries a CVSS 3.1 score of 7.8 (HIGH) and requires local access with low privileges but no user interaction. Affected versions include Dream Report 2023 up to 23.0.17795.1010 and AVEVA Reports for Operations 2023 a [truncated]
