CVE-2022-2188

Summary

Privilege escalation vulnerability in DXL Broker for Windows prior to 6.0.0.280 allows local users to gain elevated privileges by exploiting weak directory controls in the logs directory. This can lead to a denial-of-service attack on the DXL Broker.

Affected Software

VendorProductVersion RangeStatus
TrellixDXL Broker5.x < 6.0.0.280affected

Weaknesses

  • cwe-274: Privilege Escalation

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References