Question 1

What is CVE-2022-43997 — CVE-2022-43997?

Accepted Answer

Incorrect access control in Aternity agent in Riverbed Aternity before 12.1.4.27 allows for local privilege escalation. There is an insufficiently protected handle to the A180AG.exe SYSTEM process with PROCESS_ALL_ACCESS rights.

Question 2

What is the authoritative source for CVE-2022-43997?

Accepted Answer

CVE-2022-43997 (CVE-2022-43997) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	7.8 ()
Vector	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS	0.36% probability of exploitation · percentile 28.0% · 2026-06-19T12:03:05Z
Last modified	2026-06-17

CVE-2022-43997CVE-2022-43997

Description

Scoring