{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-07-02T02:46:55.369","vulnerabilities":[{"cve":{"id":"CVE-2022-1517","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2022-06-24T15:15:09.220","lastModified":"2026-06-17T04:22:35.793","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an attacker to change settings, configurations, software, or access sensitive data on the affected produc. An attacker could also exploit this vulnerability to access APIs not intended for general use and interact through the network."},{"lang":"es","value":"LRM usa altos privilegios. Un actor malicioso no autenticado puede cargar y ejecutar código de forma remota a nivel del sistema operativo, lo que puede permitir a un atacante cambiar los ajustes, configuraciones, software o acceder a datos confidenciales en el producto afectado. Un atacante también podría explotar esta vulnerabilidad para acceder a APIs no destinadas al uso general e interactuar mediante la red"}],"affected":[{"source":"ics-cert@hq.dhs.gov","affectedData":[{"vendor":"Illumina","product":"NextSeq 550Dx","versions":[{"version":"LRM Versions 1.3 to 3.1","status":"affected"}]},{"vendor":"Illumina","product":"MiSeq Dx","versions":[{"version":"LRM Versions 1.3 to 3.1","status":"affected"}]},{"vendor":"Illumina","product":"NextSeq 500 Instrument","versions":[{"version":"LRM Versions 1.3 to 3.1","status":"affected"}]},{"vendor":"Illumina","product":"NextSeq 550 Instrument","versions":[{"version":"LRM Versions 1.3 to 3.1","status":"affected"}]},{"vendor":"Illumina","product":"MiSeq Instrument","versions":[{"version":"LRM Versions 1.3 to 3.1","status":"affected"}]},{"vendor":"Illumina","product":"iSeq 100 Instrument","versions":[{"version":"LRM Versions 1.3 to 3.1","status":"affected"}]},{"vendor":"Illumina","product":"MiniSeq Instrument","versions":[{"version":"LRM Versions 1.3 to 3.1","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-04-16T15:54:32.128012Z","id":"CVE-2022-1517","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-250"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-269"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:illumina:local_run_manager:*:*:*:*:*:*:*:*","versionStartIncluding":"1.3","versionEndIncluding":"3.1","matchCriteriaId":"C6A76287-2C7D-4EDD-B551-3E162819A08B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:illumina:iseq_100:-:*:*:*:*:*:*:*","matchCriteriaId":"0136ED72-BF05-404D-910A-DA5B73F69771"},{"vulnerable":false,"criteria":"cpe:2.3:h:illumina:miniseq:-:*:*:*:*:*:*:*","matchCriteriaId":"2DA69772-E795-4A64-A6A1-0BDD503D263B"},{"vulnerable":false,"criteria":"cpe:2.3:h:illumina:miseq:-:*:*:*:*:*:*:*","matchCriteriaId":"8AFB0D5A-AF5A-4A84-963F-C6307ADCFF4E"},{"vulnerable":false,"criteria":"cpe:2.3:h:illumina:miseq_dx:-:*:*:*:*:*:*:*","matchCriteriaId":"D7731600-AE91-4D74-A219-BAE147B29A7F"},{"vulnerable":false,"criteria":"cpe:2.3:h:illumina:nextseq_500:-:*:*:*:*:*:*:*","matchCriteriaId":"1C7AEA5A-707D-4BF4-9DF6-BDE6E6D97B60"},{"vulnerable":false,"criteria":"cpe:2.3:h:illumina:nextseq_550:-:*:*:*:*:*:*:*","matchCriteriaId":"BF742B4D-0FC5-443A-8040-7B0A1B298707"},{"vulnerable":false,"criteria":"cpe:2.3:h:illumina:nextseq_550dx:-:*:*:*:*:*:*:*","matchCriteriaId":"B3D5AB9D-7EAA-45F2-A10F-A2D142B20D3D"}]}]}],"references":[{"url":"https://www.cisa.gov/uscert/ics/advisories/icsa-22-153-02","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.cisa.gov/uscert/ics/advisories/icsa-22-153-02","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}}]}