Lucene search

K
cvelistHackeroneCVELIST:CVE-2022-43555
HistoryNov 03, 2023 - 6:13 p.m.

CVE-2022-43555

2023-11-0318:13:19
hackerone
www.cve.org
4
ivanti
avalanche
printer
authentication
vulnerability
privilege escalation

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

72.4%

Ivanti Avalanche Printer Device Service Missing Authentication Local Privilege Escalation Vulnerability

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "vendor": "Ivanti",
    "product": "Avalanche",
    "versions": [
      {
        "version": "6.4.1.236",
        "status": "affected",
        "lessThan": "6.4.1.236",
        "versionType": "semver"
      }
    ]
  }
]

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

72.4%

Related for CVELIST:CVE-2022-43555