Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2022-2188
PUBLISHED
More InfoOfficial Page
Assigner-trellix
Assigner Org ID-01626437-bf8f-4d1c-912a-893b5eb04808
View Known Exploited Vulnerability (KEV) details
Published At-07 Nov, 2022 | 11:26
Updated At-08 May, 2025 | 16:02
Rejected At-
▼CVE Numbering Authority (CNA)
DXL Broker privilege escalation vulnerability

Privilege escalation vulnerability in DXL Broker for Windows prior to 6.0.0.280 allows local users to gain elevated privileges by exploiting weak directory controls in the logs directory. This can lead to a denial-of-service attack on the DXL Broker.

Affected Products
Vendor
Musarubra US LLC (Trellix)Trellix
Product
DXL Broker
Platforms
  • Windows
Default Status
unaffected
Versions
Affected
  • From 5.x before 6.0.0.280 (custom)
Problem Types
TypeCWE IDDescription
N/AN/Acwe-274: Privilege Escalation
Type: N/A
CWE ID: N/A
Description: cwe-274: Privilege Escalation
Metrics
VersionBase scoreBase severityVector
3.16.5MEDIUM
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Version: 3.1
Base score: 6.5
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-122CAPEC-122 Privilege Abuse
CAPEC ID: CAPEC-122
Description: CAPEC-122 Privilege Abuse
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://kcm.trellix.com/corporate/index?page=content&id=SB10383
N/A
Hyperlink: https://kcm.trellix.com/corporate/index?page=content&id=SB10383
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://kcm.trellix.com/corporate/index?page=content&id=SB10383
x_transferred
Hyperlink: https://kcm.trellix.com/corporate/index?page=content&id=SB10383
Resource:
x_transferred
2. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
Details not found