nvd-json-data-feeds/CVE-2022/CVE-2022-258xx/CVE-2022-25841.json

{
  "id": "CVE-2022-25841",
  "sourceIdentifier": "secure@intel.com",
  "published": "2022-08-18T20:15:10.693",
  "lastModified": "2022-08-22T15:32:02.627",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "Uncontrolled search path elements in the Intel(R) Datacenter Group Event Android application, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access."
    },
    {
      "lang": "es",
      "value": "Unos elementos de la ruta de b\u00fasqueda no controlados en la aplicaci\u00f3n Intel(R) Datacenter Group Event Android, en todas sus versiones, pueden permitir que un usuario autenticado habilite potencialmente una escalada de privilegios por medio del acceso local."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "LOCAL",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-427"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:intel:datacenter_group_event:*:*:*:*:*:android:*:*",
              "matchCriteriaId": "E94CFFDB-F5A3-4FA3-93E9-4110151ACA31"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00678.html",
      "source": "secure@intel.com",
      "tags": [
        "Vendor Advisory"
      ]
    }
  ]
}