{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2022-36380","assignerOrgId":"6dda929c-bb53-4a77-a76d-48e79601a1ce","state":"PUBLISHED","assignerShortName":"intel","requesterUserId":"e1538295-92a9-4bd5-bb63-88a76fc3a35c","dateReserved":"2022-07-24T03:00:08.635Z","datePublished":"2022-11-11T15:49:12.259Z","dateUpdated":"2025-02-04T17:17:51.283Z"},"containers":{"cna":{"providerMetadata":{"orgId":"6dda929c-bb53-4a77-a76d-48e79601a1ce","shortName":"intel","dateUpdated":"2022-11-14T17:46:30.329Z"},"problemTypes":[{"descriptions":[{"lang":"en","description":"escalation of privilege"}]}],"affected":[{"vendor":"n/a","product":"Intel(r) NUC Kit Wireless Adapter drivers for Windows 10","versions":[{"version":"before version 22.40","status":"affected"}],"defaultStatus":"unaffected"}],"descriptions":[{"lang":"en","value":"Uncontrolled search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of privilege via local access."}],"references":[{"name":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00747.html","url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00747.html"}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV3_1":{"version":"3.1","baseScore":6.7,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H"}}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T10:00:04.366Z"},"title":"CVE Program Container","references":[{"name":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00747.html","url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00747.html","tags":["x_transferred"]}]},{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-427","lang":"en","description":"CWE-427 Uncontrolled Search Path Element"}]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-01-29T20:40:35.940781Z","id":"CVE-2022-36380","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-02-04T17:17:51.283Z"}}]}}