Lucene search

MitreCVE-2022-29333

HistoryMay 24, 2022 - 9:15 p.m.

CVE-2022-29333

2022-05-2421:15:20

CWE-269

mitre

web.nvd.nist.gov

cyberlink

power director

v14

vulnerability

privilege escalation

.exe file

nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

49.1%

JSON

A vulnerability in CyberLink Power Director v14 allows attackers to escalate privileges via a crafted .exe file.

Affected configurations

Nvd

Node

cyberlinkpowerdirectorMatch14.0

VendorProductVersionCPE
cyberlinkpowerdirector14.0cpe:2.3:a:cyberlink:powerdirector:14.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cyberlink	powerdirector	14.0	cpe:2.3:a:cyberlink:powerdirector:14.0:::::::*

References

cyberlink.com

power.com

www.youtube.com/watch?v=r75k-ae3_ng

youtu.be/B46wtd-ZNog

Social References

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

49.1%

JSON

Related for CVE-2022-29333