CVE-2022-32576

CWE-4273 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 75.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Unite
Timeline
PublishedMay 10

Description

Uncontrolled search path in the Intel(R) Unite(R) Plugin SDK before version 4.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5intel(r)_unite(r)_plugin_sdkbefore version 4.2
NVDintel/unite< 4.2

🔴Vulnerability Details

2
CVEList
CVE-2022-32576: Uncontrolled search path in the Intel(R) Unite(R) Plugin SDK before version 42023-05-10
GHSA
GHSA-6xhf-wfx5-w55p: Uncontrolled search path in the Intel(R) Unite(R) Plugin SDK before version 42023-05-10
CVE-2022-32576 (HIGH CVSS 7.8) | Uncontrolled search path in the Int | cvebase.io