CVE-2022-27229

{"id": "CVE-2022-27229", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}, {"type": "Secondary", "source": "secure@intel.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.8}]}, "published": "2023-11-14T19:15:10.813", "references": [{"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html", "tags": ["Patch", "Vendor Advisory"], "source": "secure@intel.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}, {"type": "Secondary", "source": "secure@intel.com", "description": [{"lang": "en", "value": "CWE-249"}]}], "descriptions": [{"lang": "en", "value": "Path transversal in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access."}, {"lang": "es", "value": "Path transversal en Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN Software de herramienta de actualizaci\u00f3n de firmware HDMI anteriores a la versi\u00f3n 1.79.1.1 puede permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a trav\u00e9s del acceso local."}], "lastModified": "2023-11-20T20:53:38.613", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:intel:hdmi_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF6754EE-BF82-445C-9C8D-88E60039FC8A", "versionEndExcluding": "1.79.1.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:intel:nuc_7_business_nuc7i3dnhnc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3204F73F-448F-4D27-91EC-0B51EDA52563"}, {"criteria": "cpe:2.3:h:intel:nuc_7_business_nuc7i3dnktc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F5A34B36-9883-4614-AA99-909386365342"}, {"criteria": "cpe:2.3:h:intel:nuc_7_business_nuc7i5dnkpc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "97BE736A-7802-4DBC-83EF-DA94C32CFFFA"}, {"criteria": "cpe:2.3:h:intel:nuc_7_business_nuc7i5dnkpu:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7904A205-3072-46AB-88E6-3EBEA1E53BD4"}, {"criteria": "cpe:2.3:h:intel:nuc_kit_nuc7i3dnhe:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3143ABA5-9741-4CD2-AB9A-A7600EA6E32F"}, {"criteria": "cpe:2.3:h:intel:nuc_kit_nuc7i3dnke:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "97A8937C-5050-436C-B08C-1CA8F1F49FA6"}, {"criteria": "cpe:2.3:h:intel:nuc_kit_nuc7i5dnhe:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8E845C54-797F-4DAC-87ED-D5FDEDBAC5D6"}, {"criteria": "cpe:2.3:h:intel:nuc_kit_nuc7i5dnke:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2EF7E820-8567-4E9A-8247-5E1665FFF8BC"}, {"criteria": "cpe:2.3:h:intel:nuc_kit_nuc7i7dnhe:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "550295DC-BA99-4A39-AF81-6109D4955B36"}, {"criteria": "cpe:2.3:h:intel:nuc_kit_nuc7i7dnke:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5DFDFEB2-B10D-489E-B51C-10FA84E65858"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "secure@intel.com"}