Improper Authentication in Intel XMM 7560 Modem Software
CVE-2022-27874

7.2HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Xmm(tm) 7560 Modem Software
Vendor: CVE Published:; 11 November 2022

What is CVE-2022-27874?

The Intel XMM 7560 Modem software before version M2_7560_R_01.2146.00 contains a flaw in its authentication process. This vulnerability may allow a privileged user with physical access to the device to potentially escalate their privileges. By exploiting this vulnerability, an attacker could gain unauthorized access to sensitive functions or data within the modem's software.

Affected Version(s)

Intel(R) XMM(TM) 7560 Modem software before version M2_7560_R_01.2146.00

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2022
Vulnerability Reserved
Apr 5, 2022