Lucene search

MitreCVE-2022-38604

HistoryApr 11, 2023 - 1:15 a.m.

CVE-2022-38604

2023-04-1101:15:06

CWE-59

mitre

web.nvd.nist.gov

wacom

driver

windows

arbitrary file deletion

vulnerability

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS

Percentile

9.8%

JSON

Wacom Driver 6.3.46-1 for Windows and lower was discovered to contain an arbitrary file deletion vulnerability.

Affected configurations

Nvd

Node

microsoftwindowsMatch-

AND

wacomdriverMatch6.3.45-1

wacomdriverMatch6.3.46-1

VendorProductVersionCPE
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
wacomdriver6.3.45-1cpe:2.3:a:wacom:driver:6.3.45-1:*:*:*:*:*:*:*
wacomdriver6.3.46-1cpe:2.3:a:wacom:driver:6.3.46-1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
wacom	driver	6.3.45-1	cpe:2.3:a:wacom:driver:6.3.45-1:::::::*
wacom	driver	6.3.46-1	cpe:2.3:a:wacom:driver:6.3.46-1:::::::*

References

github.com/LucaBarile/CVE-2022-38604

lucabarile.github.io/Blog/blog.html

lucabarile.github.io/Blog/CVE-2022-38604/index.html

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS

Percentile

9.8%

JSON

Related for CVE-2022-38604