CVE-2022-26367

2022-11-1116:15:12

CWE-119

[email protected]

web.nvd.nist.gov

cve-2022-26367

intel

xmm 7560 modem

software

buffer restrictions

privilege escalation

local access

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

8.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Improper buffer restrictions in some Intel® XMM™ 7560 Modem software before version M2_7560_R_01.2146.00 may allow a privileged user to potentially enable escalation of privilege via local access.

Affected configurations

NVD

Node

intelxmm_7560_firmwareRange<m2_7560_r_01.2146.00

AND

intelxmm_7560Matchm.2

CPENameOperatorVersion
intel:xmm_7560_firmwareintel xmm 7560 firmwareltm2_7560_r_01.2146.00

CPE	Name	Operator	Version
intel:xmm_7560_firmware	intel xmm 7560 firmware	lt	m2_7560_r_01.2146.00

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) XMM(TM) 7560 Modem software",
    "versions": [
      {
        "version": "before version M2_7560_R_01.2146.00",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]