CVE-2022-4258

🗓️ 16 Jan 2023 09:52:09Reported by CERTVDEType

Insecure HIMA PC Software, Privilege Escalatio

Reporter	Title	Published	Views	Family All 8
CNNVD	HIMA Paul Hildebrandt X-OPC 、X-OTS 代码问题漏洞	16 Jan 202300:00	–	cnnvd
Cvelist	CVE-2022-4258 Hima: Unquoted path vulnerabilities in HIMA PC based Software	16 Jan 202309:52	–	cvelist
EUVD	EUVD-2022-51614	3 Oct 202520:07	–	euvd
NVD	CVE-2022-4258	16 Jan 202310:15	–	nvd
Prion	Design/Logic Flaw	16 Jan 202310:15	–	prion
Positive Technologies	PT-2023-14140 · Hima · Hima Pc Based	16 Jan 202300:00	–	ptsecurity
RedhatCVE	CVE-2022-4258	5 Feb 202520:19	–	redhatcve
Vulnrichment	CVE-2022-4258 Hima: Unquoted path vulnerabilities in HIMA PC based Software	16 Jan 202309:52	–	vulnrichment

NVD

Vulners

Node

hima hopcsRange≤3.56.4

hima x-opc_a+eRange≤5.6.1210

hima x-opc_daRange≤5.6.1210

hima x-otsRange≤1.32.550

AND

microsoft windowsMatch-

[
  {
    "defaultStatus": "unaffected",
    "product": "HOPCS",
    "vendor": "HIMA",
    "versions": [
      {
        "lessThanOrEqual": "3.56.4",
        "status": "affected",
        "version": "1.0.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "X-OPC DA",
    "vendor": "HIMA",
    "versions": [
      {
        "lessThanOrEqual": "5.6.1210",
        "status": "affected",
        "version": "1.0.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "X-OPC A+E ",
    "vendor": "HIMA",
    "versions": [
      {
        "lessThanOrEqual": "5.6.1210",
        "status": "affected",
        "version": "1.0.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "X-OTS",
    "vendor": "HIMA",
    "versions": [
      {
        "lessThanOrEqual": "1.32.550",
        "status": "affected",
        "version": "1.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
cert	www.cert.vde.com/en/advisories/VDE-2022-059/

21 Nov 2024 07:34Current

7.8High risk

Vulners AI Score7.8

CVSS 3.17.8

EPSS0.00065

SSVC

CWE-428

cve-2022-4258 hima pc software vulnerability privilege escalation