{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/68429?format=json","vulnerability_id":"VCID-56yw-ct8w-2kef","summary":"Improper access control for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi software may allow a privileged user to potentially enable escalation of privilege via local access.","aliases":[{"alias":"CVE-2022-40964"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/95327?format=json","purl":"pkg:deb/debian/firmware-nonfree@20240610-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20240610-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/195453?format=json","purl":"pkg:deb/debian/firmware-nonfree@20250410-2~bpo12%2B1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20250410-2~bpo12%252B1"},{"url":"http://public2.vulnerablecode.io/api/packages/95313?format=json","purl":"pkg:deb/debian/firmware-nonfree@20250410-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gcjt-uywr-zqdj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20250410-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/95312?format=json","purl":"pkg:deb/debian/firmware-nonfree@20260410-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20260410-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1076564?format=json","purl":"pkg:deb/debian/firmware-nonfree@20260519-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20260519-1%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/95311?format=json","purl":"pkg:deb/debian/firmware-nonfree@20210315-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-37pb-rw91-bkhy"},{"vulnerability":"VCID-4g8j-9z8y-dkhj"},{"vulnerability":"VCID-4ws6-8csr-1ye7"},{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-6wus-e796-tuch"},{"vulnerability":"VCID-7dv6-4wrj-jfhm"},{"vulnerability":"VCID-7x7d-dg5a-7ub3"},{"vulnerability":"VCID-a8x1-tagf-tyew"},{"vulnerability":"VCID-csa5-wsng-r3eg"},{"vulnerability":"VCID-e89b-p9jq-h3gs"},{"vulnerability":"VCID-gcjt-uywr-zqdj"},{"vulnerability":"VCID-hc23-sczz-bbcd"},{"vulnerability":"VCID-jrny-vgpj-vfhu"},{"vulnerability":"VCID-p9jd-zyds-kuh7"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-sb12-jt7g-g7az"},{"vulnerability":"VCID-tjep-1434-zkht"},{"vulnerability":"VCID-uabc-xnkh-juh8"},{"vulnerability":"VCID-v328-py9r-dkfm"},{"vulnerability":"VCID-vdns-du6y-ukgy"},{"vulnerability":"VCID-vuhr-uhkj-uufg"},{"vulnerability":"VCID-wmhm-nwq7-5bhc"},{"vulnerability":"VCID-wwjt-ypge-cqgh"},{"vulnerability":"VCID-zhfd-21ng-gqda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20210315-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/195451?format=json","purl":"pkg:deb/debian/firmware-nonfree@20210315-3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-37pb-rw91-bkhy"},{"vulnerability":"VCID-4g8j-9z8y-dkhj"},{"vulnerability":"VCID-4ws6-8csr-1ye7"},{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-6wus-e796-tuch"},{"vulnerability":"VCID-7dv6-4wrj-jfhm"},{"vulnerability":"VCID-7x7d-dg5a-7ub3"},{"vulnerability":"VCID-a8x1-tagf-tyew"},{"vulnerability":"VCID-csa5-wsng-r3eg"},{"vulnerability":"VCID-e89b-p9jq-h3gs"},{"vulnerability":"VCID-gcjt-uywr-zqdj"},{"vulnerability":"VCID-hc23-sczz-bbcd"},{"vulnerability":"VCID-jrny-vgpj-vfhu"},{"vulnerability":"VCID-p9jd-zyds-kuh7"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-sb12-jt7g-g7az"},{"vulnerability":"VCID-tjep-1434-zkht"},{"vulnerability":"VCID-uabc-xnkh-juh8"},{"vulnerability":"VCID-v328-py9r-dkfm"},{"vulnerability":"VCID-vdns-du6y-ukgy"},{"vulnerability":"VCID-vuhr-uhkj-uufg"},{"vulnerability":"VCID-wmhm-nwq7-5bhc"},{"vulnerability":"VCID-wwjt-ypge-cqgh"},{"vulnerability":"VCID-zhfd-21ng-gqda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20210315-3"},{"url":"http://public2.vulnerablecode.io/api/packages/95309?format=json","purl":"pkg:deb/debian/firmware-nonfree@20230210-5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4ws6-8csr-1ye7"},{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-a8x1-tagf-tyew"},{"vulnerability":"VCID-csa5-wsng-r3eg"},{"vulnerability":"VCID-e89b-p9jq-h3gs"},{"vulnerability":"VCID-p9jd-zyds-kuh7"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-sb12-jt7g-g7az"},{"vulnerability":"VCID-uabc-xnkh-juh8"},{"vulnerability":"VCID-vdns-du6y-ukgy"},{"vulnerability":"VCID-wmhm-nwq7-5bhc"},{"vulnerability":"VCID-wwjt-ypge-cqgh"},{"vulnerability":"VCID-zhfd-21ng-gqda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20230210-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/195452?format=json","purl":"pkg:deb/debian/firmware-nonfree@20230210-5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4ws6-8csr-1ye7"},{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-a8x1-tagf-tyew"},{"vulnerability":"VCID-csa5-wsng-r3eg"},{"vulnerability":"VCID-e89b-p9jq-h3gs"},{"vulnerability":"VCID-p9jd-zyds-kuh7"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-sb12-jt7g-g7az"},{"vulnerability":"VCID-uabc-xnkh-juh8"},{"vulnerability":"VCID-vdns-du6y-ukgy"},{"vulnerability":"VCID-wmhm-nwq7-5bhc"},{"vulnerability":"VCID-wwjt-ypge-cqgh"},{"vulnerability":"VCID-zhfd-21ng-gqda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/firmware-nonfree@20230210-5"},{"url":"http://public2.vulnerablecode.io/api/packages/118164?format=json","purl":"pkg:rpm/redhat/linux-firmware@20200421-83.git78c0348?arch=el7_9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-e89b-p9jq-h3gs"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-sb12-jt7g-g7az"},{"vulnerability":"VCID-zhfd-21ng-gqda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/linux-firmware@20200421-83.git78c0348%3Farch=el7_9"},{"url":"http://public2.vulnerablecode.io/api/packages/118166?format=json","purl":"pkg:rpm/redhat/linux-firmware@20220209-130?arch=el9_0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-zhfd-21ng-gqda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/linux-firmware@20220209-130%3Farch=el9_0"},{"url":"http://public2.vulnerablecode.io/api/packages/118043?format=json","purl":"pkg:rpm/redhat/linux-firmware@20230814-140?arch=el9_3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-cq4a-ybsu-d7ck"},{"vulnerability":"VCID-e89b-p9jq-h3gs"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-sb12-jt7g-g7az"},{"vulnerability":"VCID-zhfd-21ng-gqda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/linux-firmware@20230814-140%3Farch=el9_3"},{"url":"http://public2.vulnerablecode.io/api/packages/118162?format=json","purl":"pkg:rpm/redhat/linux-firmware@20230824-120.git0e048b06?arch=el8_9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-e89b-p9jq-h3gs"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-sb12-jt7g-g7az"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/linux-firmware@20230824-120.git0e048b06%3Farch=el8_9"},{"url":"http://public2.vulnerablecode.io/api/packages/114540?format=json","purl":"pkg:rpm/redhat/linux-firmware@20240419-102.git055dfa8e?arch=el8_2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-56yw-ct8w-2kef"},{"vulnerability":"VCID-pmsb-22m5-ybgx"},{"vulnerability":"VCID-ysnn-7yby-c7er"},{"vulnerability":"VCID-zhfd-21ng-gqda"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/linux-firmware@20240419-102.git055dfa8e%3Farch=el8_2"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40964.json","reference_id":"","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-40964.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-40964","reference_id":"","reference_type":"","scores":[{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11429","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.1134","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11425","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12099","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12161","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12086","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-40964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40964"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1051892","reference_id":"1051892","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1051892"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2238962","reference_id":"2238962","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2238962"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HUCYUR4WBTELCRHELISJ3RMZVHKIV5TN/","reference_id":"HUCYUR4WBTELCRHELISJ3RMZVHKIV5TN","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T14:06:56Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HUCYUR4WBTELCRHELISJ3RMZVHKIV5TN/"},{"reference_url":"http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00766.html","reference_id":"intel-sa-00766.html","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T14:06:56Z/"}],"url":"http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00766.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/K24OJT4AVMNND7LBTC2ZDDTE6DJHAKB4/","reference_id":"K24OJT4AVMNND7LBTC2ZDDTE6DJHAKB4","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T14:06:56Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/K24OJT4AVMNND7LBTC2ZDDTE6DJHAKB4/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00043.html","reference_id":"msg00043.html","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T14:06:56Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/09/msg00043.html"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6595","reference_id":"RHSA-2023:6595","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6595"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3422","reference_id":"RHSA-2024:3422","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3422"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3939","reference_id":"RHSA-2024:3939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3939"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:4575","reference_id":"RHSA-2024:4575","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:4575"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y76A3PLHIQCEPESB4XVBV5SRRXQEZ5JY/","reference_id":"Y76A3PLHIQCEPESB4XVBV5SRRXQEZ5JY","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-02T14:06:56Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y76A3PLHIQCEPESB4XVBV5SRRXQEZ5JY/"}],"weaknesses":[{"cwe_id":284,"name":"Improper Access Control","description":"The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor."}],"exploits":[],"severity_range_score":"7.9 - 7.9","exploitability":"0.5","weighted_severity":"7.1","risk_score":3.5,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-56yw-ct8w-2kef"}