Lucene search
HYPRCVELIST:CVE-2022-1984HistoryJul 19, 2022 - 2:07 p.m.
CVE-2022-1984
2022-07-1914:07:45
CWE-502
HYPR
www.cve.org
1
hypr
windows
workforce access
deserialization
vulnerability
privilege escalation
CVSS3
4.5
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
7.5
Confidence
High
EPSS
0
Percentile
12.7%
This issue affects: HYPR Windows WFA versions prior to 7.2; Unsafe Deserialization vulnerability in HYPR Workforce Access (WFA) before version 7.2 may allow local authenticated attackers to elevate privileges via a malicious serialized payload.
CNA Affected
[
{
"product": "HYPR Windows WFA",
"vendor": "HYPR",
"versions": [
{
"lessThan": "7.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]References
Related
cve
cve
CVE-2022-1984
2022-07-19 15:15:08
prion
prion
Deserialization of untrusted data
2022-07-19 15:15:00
nvd
nvd
CVE-2022-1984
2022-07-19 15:15:08
CVSS3
4.5
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
7.5
Confidence
High
EPSS
0
Percentile
12.7%
Related for CVELIST:CVE-2022-1984