CVE-2022-27639

2022-11-1116:15:13

CWE-459

[email protected]

web.nvd.nist.gov

cve-2022-27639

intel

xmm 7560 modem

privilege escalation

nvd

8.4 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.8%

JSON

Incomplete cleanup in some Intel® XMM™ 7560 Modem software before version M2_7560_R_01.2146.00 may allow a privileged user to potentially enable escalation of privilege via adjacent access.

Affected configurations

NVD

Node

intelxmm_7560_firmwareRange<m2_7560_r_01.2146.00

AND

intelxmm_7560Matchm.2

CPENameOperatorVersion
intel:xmm_7560_firmwareintel xmm 7560 firmwareltm2_7560_r_01.2146.00

CPE	Name	Operator	Version
intel:xmm_7560_firmware	intel xmm 7560 firmware	lt	m2_7560_r_01.2146.00

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) XMM(TM) 7560 Modem software",
    "versions": [
      {
        "version": "before version M2_7560_R_01.2146.00",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]