Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

CVE-2026-3315 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2026-3315

CVE-2026-3315

MEDIUM5.8

Local Privilege Escalation Due to Writable Executable in Privileged Visionline Service Path

Published Mar 10, 2026

Modified 1 weeks ago

Details

Incorrect Default Permissions, : Execution with Unnecessary Privileges, : Incorrect Permission Assignment for Critical Resource vulnerability in ASSA ABLOY Visionline on Windows allows Configuration/Environment Manipulation.This issue affects Visionline: from 1.0 before 1.33.

References

https://www.cve.org/CVERecord?id=CVE-2026-3315

https://www.vingcard.com/en/service-and-support/product-security-center/hospitality-product-security-advisories

CVSS Analysis

CVSS v4.0

5.8

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Attack Requirements

PresentAT:P

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Vulnerable System

Vuln. Confidentiality

LowVC:L

Vuln. Integrity

HighVI:H

Vuln. Availability

LowVA:L

Subsequent System

Subseq. Confidentiality

LowSC:L

Subseq. Integrity

LowSI:L

Subseq. Availability

LowSA:L

5.8/CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:L/SA:L/AU:Y/R:U/RE:L/U:Clear

Weakness Type (CWE)

Configuration

Unnecessary Privileges

Incorrect Default Permissions

Incorrect Permission Assignment

Ecosystems

Timeline

PublishedMar 10, 2026

ModifiedMar 11, 2026