CVE-2022-43701

🗓️ 27 Jul 2023 21:28:08Reported by ArmType

When directory permissions are weak, an attacker can execute malicious code

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2022-43701	28 Jul 202302:40	–	circl
CNNVD	ARM Compiler 安全漏洞	27 Jul 202300:00	–	cnnvd
Cvelist	CVE-2022-43701 Insecure directory permissions on installer files	27 Jul 202321:28	–	cvelist
EUVD	EUVD-2022-46683	3 Oct 202520:07	–	euvd
Intel	Arm DS for Intel® SoC FPGA Software Advisory	14 Mar 202400:00	–	intel
NVD	CVE-2022-43701	27 Jul 202322:15	–	nvd
Prion	Code injection	27 Jul 202322:15	–	prion
Positive Technologies	PT-2023-14293 · Arm · Arm Compiler 5 (Ac5) +11	27 Jul 202300:00	–	ptsecurity
Vulnrichment	CVE-2022-43701 Insecure directory permissions on installer files	27 Jul 202321:28	–	vulnrichment

NVD

Node

arm arm_compilerRange5.00–5.06

arm arm_compilerRange6.00–6.20

arm arm_compiler_for_embedded_fusaMatch6.16lts

arm arm_compiler_for_functional_safetyMatch6.6

arm arm_development_studio

arm arm_mobile_studio

arm ds_development_studioRange5.0.0–5.29.3

arm fast_models

arm gnu_toolchain

arm keil_mdk

arm linaro_forgeRange<22.1

arm mbed_studio

[
  {
    "defaultStatus": "affected",
    "modules": [
      "installer"
    ],
    "product": "Arm Compiler 5 (AC5), Arm Compiler for Embedded 6 (AC6), Fast Models (FM), Arm Compiler for Embedded FuSA (ACEF), Arm Development Studio (ADS), Arm Forge (AF), Arm Mobile Studio (AMS), DS-5 Development Studio, Fast Models (FM), GNU Toolchain (GT), Keil MDK (KMDK), Mbed Studio (MS)",
    "vendor": "Arm Ltd",
    "versions": [
      {
        "status": "affected",
        "version": "AC5 All Releases, AC6 Releases prior to 6.20, ACEF All Releases, ADS All Releases, AF Releases prior to 22.1, AMS All releases, DS5 All Releases, FM All Releases, GT All Releases, KMDK All Releases, MS All Releases"
      }
    ]
  }
]

Source	Link
developer	www.developer.arm.com/documentation/ka005596/latest
intel	www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00930.html

13 Feb 2025 17:15Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.8

EPSS0.00067

SSVC

CWE-276