Lucene search

[email protected]CVE-2022-33973

HistoryNov 11, 2022 - 4:15 p.m.

CVE-2022-33973

2022-11-1116:15:15

[email protected]

web.nvd.nist.gov

cve-2022-33973

intel

wapi security

windows

access control

information disclosure

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

3.8 Low

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.8%

JSON

Improper access control in the Intel® WAPI Security software for Windows 10/11 before version 22.2150.0.1 may allow an authenticated user to potentially enable information disclosure via local access.

Affected configurations

Vulners

NVD

Node

intelserial_io_driver_for_intel_nuc_11_genRange<22.2150.0.1

CPENameOperatorVersion
intel:wlan_authentication_and_privacy_infrastructureintel wlan authentication and privacy infrastructurelt22.2150.0.1

CPE	Name	Operator	Version
intel:wlan_authentication_and_privacy_infrastructure	intel wlan authentication and privacy infrastructure	lt	22.2150.0.1

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel(R) WAPI Security software for Windows 10/11",
    "versions": [
      {
        "version": "before version 22.2150.0.1",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00720.html

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

3.8 Low

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.8%

JSON

Related for CVE-2022-33973

intel1 prion1 cvelist1 nvd1