CVE-2022-22521 – CVE-2022-22521 is a privilege escalation vulner... (How to Fix)

Q: What is the severity of CVE-2022-22521?

CVE-2022-22521 has a CVSS score of 7.3 (HIGH). CVE-2022-22521 is a privilege escalation vulnerability in Miele Benchmark Programming Tool where attackers can manipulate executable files to trick users with administrative privileges into running them. This allows low-privileged attackers to execute arbitrary code with elevated permissions. Affected users are those running vulnerable versions of the Miele Benchmark Programming Tool.

📋 TL;DR

CVE-2022-22521 is a privilege escalation vulnerability in Miele Benchmark Programming Tool where attackers can manipulate executable files to trick users with administrative privileges into running them. This allows low-privileged attackers to execute arbitrary code with elevated permissions. Affected users are those running vulnerable versions of the Miele Benchmark Programming Tool.

💻 Affected Systems

Products:

Miele Benchmark Programming Tool

Versions: Prior to 1.2.71 (specifically versions 1.1.49 through 1.2.71)

Operating Systems: Windows (based on typical programming tool deployment)

Default Config Vulnerable: ⚠️ Yes

Notes: Requires both a low-privileged attacker account and an administrative user who can be tricked into executing manipulated binaries.

📦 What is this software?

Benchmark Programming Tool by Miele

View all CVEs affecting Benchmark Programming Tool →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with administrative privileges, allowing installation of malware, data theft, or complete control of affected systems.

🟠

Likely Case

Local privilege escalation leading to unauthorized administrative access on the compromised system.

🟢

If Mitigated

Limited impact with proper user awareness and restricted administrative privileges.

🌐 Internet-Facing: LOW - This appears to be a local privilege escalation requiring user interaction.

🏢 Internal Only: MEDIUM - Requires an attacker with local access to trick an admin user, but could lead to significant internal compromise.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploit details are publicly available in security advisories. Requires social engineering to trick admin users.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.2.71 or later

Vendor Advisory: https://www.miele.de/p/miele-benchmark-programming-tool-2296.htm

Restart Required: Yes

Instructions:

1. Download latest version from Miele website. 2. Uninstall previous version. 3. Install version 1.2.71 or newer. 4. Restart system.

🔧 Temporary Workarounds

User Privilege Restriction

all

Limit administrative privileges to only essential users and implement principle of least privilege.

User Awareness Training

all

Train administrative users to only execute trusted binaries and verify file sources.

🧯 If You Can't Patch

Implement strict application whitelisting to prevent execution of unauthorized binaries
Use endpoint detection and response (EDR) tools to monitor for suspicious privilege escalation attempts

🔍 How to Verify

Check if Vulnerable:

Check installed version of Miele Benchmark Programming Tool. If version is below 1.2.71, system is vulnerable.

Check Version:

Check program properties or About dialog in Miele Benchmark Programming Tool interface

Verify Fix Applied:

Verify installed version is 1.2.71 or higher and test that manipulated binaries cannot be executed with elevated privileges.

📡 Detection & Monitoring

Log Indicators:

Unexpected process execution with elevated privileges
Binary execution from unusual locations

Network Indicators:

Not network-based - local privilege escalation

SIEM Query:

Process creation events where parent process is Miele Benchmark Programming Tool and child process runs with elevated privileges

📊 Metadata

CVE ID: CVE-2022-22521

CVSS v3 Score: 7.3 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-732

Published: April 27, 2022

Last Updated: November 21, 2024

🔗 References

http://packetstormsecurity.com/files/166881/Miele-Benchmark-Programming-Tool-1.1.49-1.2.71-Privilege-Escalation.html Exploit,Patch,Third Party Advisory,VDB Entry
http://seclists.org/fulldisclosure/2022/Apr/42 Exploit,Mailing List,Patch,Third Party Advisory
https://cert.vde.com/en/advisories/VDE-2022-015/ Mitigation,Third Party Advisory
https://www.miele.de/p/miele-benchmark-programming-tool-2296.htm Patch,Product,Release Notes,Vendor Advisory
http://packetstormsecurity.com/files/166881/Miele-Benchmark-Programming-Tool-1.1.49-1.2.71-Privilege-Escalation.html Exploit,Patch,Third Party Advisory,VDB Entry
http://seclists.org/fulldisclosure/2022/Apr/42 Exploit,Mailing List,Patch,Third Party Advisory
https://cert.vde.com/en/advisories/VDE-2022-015/ Mitigation,Third Party Advisory
https://www.miele.de/p/miele-benchmark-programming-tool-2296.htm Patch,Product,Release Notes,Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-22521, you might also want to check these: