Vulnerability Description
In multiple versions of HIMA PC based Software an unquoted Windows search path vulnerability might allow local users to gain privileges via a malicious .exe file and gain full access to the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hima | Hopcs | <= 3.56.4 |
| Hima | X-Opc A\+E | <= 5.6.1210 |
| Hima | X-Opc Da | <= 5.6.1210 |
| Hima | X-Ots | <= 1.32.550 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://cert.vde.com/en/advisories/VDE-2022-059/MitigationThird Party AdvisoryVDB Entry
- https://cert.vde.com/en/advisories/VDE-2022-059/MitigationThird Party AdvisoryVDB Entry
FAQ
What is CVE-2022-4258?
CVE-2022-4258 is a vulnerability with a CVSS score of 7.8 (HIGH). In multiple versions of HIMA PC based Software an unquoted Windows search path vulnerability might allow local users to gain privileges via a malicious .exe file and gain full access to the system.
How severe is CVE-2022-4258?
CVE-2022-4258 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-4258?
Check the references section above for vendor advisories and patch information. Affected products include: Hima Hopcs, Hima X-Opc A\+E, Hima X-Opc Da, Hima X-Ots, Microsoft Windows.