CVE-2022-23992: Input Validation
First published: Mon Feb 14 2022(Updated: )
XCOM Data Transport for Windows, Linux, and UNIX 11.6 releases contain a vulnerability due to insufficient input validation that could potentially allow remote attackers to execute arbitrary commands with elevated privileges.
Credit: vuln@ca.com vuln@ca.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Broadcom Xcom Data Transport | =11.6 | |
| Broadcom Xcom Data Transport | =11.6 | |
| Broadcom Xcom Data Transport | =11.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-23992.
What is the severity level of CVE-2022-23992?
CVE-2022-23992 has a severity level of critical.
What is the affected software for CVE-2022-23992?
The affected software for CVE-2022-23992 is XCOM Data Transport for Windows, Linux, and UNIX 11.6 releases.
What is the risk of CVE-2022-23992?
CVE-2022-23992 has a risk level of 9.8 (out of 10).
Is there a fix available for CVE-2022-23992?
Yes, you can find more information about the fix for CVE-2022-23992 on the Broadcom Support website.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/severity
- agent/author
- agent/description
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/broadcom
- canonical/broadcom xcom data transport
- version/broadcom xcom data transport/11.6