{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-23T01:40:13.072","vulnerabilities":[{"cve":{"id":"CVE-2022-4258","sourceIdentifier":"info@cert.vde.com","published":"2023-01-16T10:15:10.313","lastModified":"2026-06-17T05:20:24.807","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In multiple versions of HIMA PC based Software an unquoted Windows search path vulnerability might allow local users to gain privileges via a malicious .exe file and gain full access to the system."},{"lang":"es","value":"En varias versiones del software HIMA para PC, una vulnerabilidad de ruta de búsqueda de Windows sin comillas podría permitir a los usuarios locales obtener privilegios a través de un archivo .exe malicioso y obtener acceso completo al sistema."}],"affected":[{"source":"info@cert.vde.com","affectedData":[{"vendor":"HIMA","product":"HOPCS","defaultStatus":"unaffected","versions":[{"version":"1.0.0","lessThanOrEqual":"3.56.4","versionType":"semver","status":"affected"}]},{"vendor":"HIMA","product":"X-OPC DA","defaultStatus":"unaffected","versions":[{"version":"1.0.0","lessThanOrEqual":"5.6.1210","versionType":"semver","status":"affected"}]},{"vendor":"HIMA","product":"X-OPC A+E ","defaultStatus":"unaffected","versions":[{"version":"1.0.0","lessThanOrEqual":"5.6.1210","versionType":"semver","status":"affected"}]},{"vendor":"HIMA","product":"X-OTS","defaultStatus":"unaffected","versions":[{"version":"1.0.0","lessThanOrEqual":"1.32.550","versionType":"semver","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-04-03T13:39:59.396159Z","id":"CVE-2022-4258","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Secondary","description":[{"lang":"en","value":"CWE-428"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hima:hopcs:*:*:*:*:*:*:*:*","versionEndIncluding":"3.56.4","matchCriteriaId":"1FFBD495-B6DC-4DF2-99C6-BBB778BC0B5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:hima:x-opc_a\\+e:*:*:*:*:*:*:*:*","versionEndIncluding":"5.6.1210","matchCriteriaId":"E39AB0B1-60C2-4321-A474-DBC441225B96"},{"vulnerable":true,"criteria":"cpe:2.3:a:hima:x-opc_da:*:*:*:*:*:*:*:*","versionEndIncluding":"5.6.1210","matchCriteriaId":"B65F8D0C-D953-4718-8D8D-6B772E78901E"},{"vulnerable":true,"criteria":"cpe:2.3:a:hima:x-ots:*:*:*:*:*:*:*:*","versionEndIncluding":"1.32.550","matchCriteriaId":"D2089FC4-BFD1-49BE-9794-CDA90A86F3B7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://cert.vde.com/en/advisories/VDE-2022-059/","source":"info@cert.vde.com","tags":["Mitigation","Third Party Advisory","VDB Entry"]},{"url":"https://cert.vde.com/en/advisories/VDE-2022-059/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Third Party Advisory","VDB Entry"]}]}}]}