← back
CVE-2022-40207

CVE-2022-40207

CVSS 8.2 HIGHEPSS 0.2%CWE-284
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.2EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
10 May 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Improper access control in the Intel(R) SUR software before version 2.4.8989 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H