CVE-2022-26513

2022-11-1116:15:13

CWE-787

[email protected]

web.nvd.nist.gov

cve-2022-26513

out-of-bounds write

intel xmm 7560 modem

software

security vulnerability

9.6 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

9.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.6%

JSON

Out-of-bounds write in some Intel® XMM™ 7560 Modem software before version M2_7560_R_01.2146.00 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Affected configurations

NVD

Node

intelxmm_7560_firmwareRange<m2_7560_r_01.2146.00

AND

intelxmm_7560Matchm.2

CPENameOperatorVersion
intel:xmm_7560_firmwareintel xmm 7560 firmwareltm2_7560_r_01.2146.00

CPE	Name	Operator	Version
intel:xmm_7560_firmware	intel xmm 7560 firmware	lt	m2_7560_r_01.2146.00

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) XMM(TM) 7560 Modem software",
    "versions": [
      {
        "version": "before version M2_7560_R_01.2146.00",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]