Lucene search

[email protected]NVD:CVE-2022-41975

HistorySep 30, 2022 - 6:15 p.m.

CVE-2022-41975

2022-09-3018:15:12

[email protected]

web.nvd.nist.gov

realvnc

vnc server

vnc viewer

local privilege escalation

msi installer

repair mode

windows

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

RealVNC VNC Server before 6.11.0 and VNC Viewer before 6.22.826 on Windows allow local privilege escalation via MSI installer Repair mode.

Affected configurations

NVD

Node

realvncvnc_serverRange<6.11.0

Node

microsoftwindowsMatch-

AND

realvncvnc_viewerRange<6.22.826

References

help.realvnc.com/hc/en-us/articles/360002253138-Release-Notes#vnc-server-6-11-0-released-0-2

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2022-41975

cve1 cvelist1 prion1