VDB

CVE-2022-31465

CVE-2022-31465 PUBLISHED CVSS 7.800000190734863 HIGH

A vulnerability has been identified in Xpedition Designer VX.2.10 (All versions < VX.2.10 Update 13), Xpedition Designer VX.2.11 (All versions < VX.2.11 Update 11), Xpedition Designer VX.2.12 (All versions < VX.2.12 Update 5), Xpedition Designer VX.2.13 (All versions < VX.2.13 Update 1). The affected application assigns improper access rights to the service executable. This could allow an authenticated local attacker to inject arbitrary code and escalate privileges.

EPSS 0.04% · 13.9th percentile

Risk Scores

CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
EPSS Score
0.04%
13.9th percentile

Affected Products

VendorProductVersions
SiemensXpedition Designer VX.2.12*
siemensxpedition_designer0
SiemensXpedition Designer VX.2.13All versions < VX.2.13 Update 1
SiemensXpedition Designer VX.2.10*
SiemensXpedition Designer VX.2.11All versions < VX.2.11 Update 11

Exploit Intelligence

…and 51 more exploits

Timeline

  • Jun 14, 2022 CVE Published
  • Jun 15, 2022 EPSS Score
  • Aug 3, 2022 EPSS Score
  • Sep 20, 2022 EPSS Score
  • Nov 7, 2022 EPSS Score
  • Dec 25, 2022 EPSS Score
  • Feb 11, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Mar 31, 2023 EPSS Score
  • May 18, 2023 EPSS Score
  • Jul 6, 2023 EPSS Score
  • Aug 23, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›