CVE-2022-29508 MEDIUM

CVE-2022-29508

Vendor N/A

Product Intel(R) VROC software

Weakness CWE-395

Published May 10, 2023

Last update January 27, 2025

View on NVD All CVEs

CVSS base score

6.3/10

Attack vector Local

Attack complexity High

Privileges required Low

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

What the vulnerability does

01Description

Null pointer dereference in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

Key dates

02Disclosure timeline

May 10, 2023 CVE published

January 27, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-29508 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/395.html

Related vulnerabilities

CVE-2022-29508

01Description

02Disclosure timeline

03References

04Related CVE