What is CVE-2023-1966?

CVE-2023-1966 is a high-severity vulnerability in Illumina Iscan Control Software, classified under CWE-250. CVSS score: 7.4/10. Published 2023-04-28.

How severe is CVE-2023-1966?

High severity. CVSS v3 base score is 7.4 out of 10.

Vulnerability in Illumina Iscan Control Software

CVE-2023-1966

Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload and execute code remotely at the operating system level, which could allow an a…

EPSS: 0.003 (55.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.4 (High). Vector: CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H.

Affected products

Illumina Iscan Control Software — versions 4.0.0, 4.0.5
Illumina Iseq 100 — versions All versions
Illumina Miniseq Control Software — versions 2.0
Illumina Miseq Control Software — versions 4.0 (RUO Mode)
Illumina Miseqdx Operating Software — versions 4.0.1
Illumina Nextseq 1000/2000 Control Software — versions 0
Illumina Nextseq 500/550 Control Software — versions 4.0
Illumina Nextseq 550dx Control Software — versions 4.0 (RUO Mode)
Illumina Nextseq 550dx Operating Software — versions 1.0.0 , 1.3.3
Illumina Novaseq 6000 Control Software — versions 0

Weakness classification (CWE)

CWE-250

References

Frequently asked questions

What is CVE-2023-1966?: CVE-2023-1966 is a high-severity vulnerability in Illumina Iscan Control Software, classified under CWE-250. CVSS score: 7.4/10. Published 2023-04-28.
How severe is CVE-2023-1966?: High severity. CVSS v3 base score is 7.4 out of 10.