CVE-2022-4258

Summary

In multiple versions of HIMA PC based Software an unquoted Windows search path vulnerability might allow local users to gain privileges via a malicious .exe file and gain full access to the system.

Affected Software

VendorProductVersion RangeStatus
HIMAHOPCS1.0.0 <= 3.56.4affected
HIMAX-OPC DA1.0.0 <= 5.6.1210affected
HIMAX-OPC A+E1.0.0 <= 5.6.1210affected
HIMAX-OTS1.0.0 <= 1.32.550affected

Weaknesses

  • CWE-428: CWE-428 Unquoted Search Path or Element

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References