Illumina Miniseq

7 CVEs affecting Illumina Miniseq. Latest disclosed: 2023-04-28. Critical: 5, High: 2.

Top CVEs affecting Illumina Miniseq
CVESeverityScorePublishedSummary
CVE-2023-1968Critical10.02023-04-28 Instruments with Illumina Universal Copy Service v2.x are vulnerable due to binding to an unrestricted IP address. An unauthenticated malicious actor could us…
CVE-2022-1519Critical10.02022-06-24LRM does not restrict the types of files that can be uploaded to the affected product. A malicious actor can upload any file type, including executable code th…
CVE-2022-1518Critical10.02022-06-24LRM contains a directory traversal vulnerability that can allow a malicious actor to upload outside the intended directory structure.
CVE-2022-1517Critical10.02022-06-24LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an att…
CVE-2022-1521Critical9.12022-06-24LRM does not implement authentication or authorization by default. A malicious actor can inject, replay, modify, and/or intercept sensitive data.
CVE-2023-1966High7.42023-04-28Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges vulnerability. An unauthenticated malicious actor could upload…
CVE-2022-1524High7.42022-06-24LRM version 2.4 and lower does not implement TLS encryption. A malicious actor can MITM attack sensitive data in-transit, including credentials.