Published: 02/06/2022 Updated: 01/03/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Linux Kernel could allow a local malicious user to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. By executing a specially-crafted program, an attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service condition on the system.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
redhat enterprise linux 9.0
debian debian linux 10.0
netapp h410c_firmware -
netapp h300s_firmware -
netapp h500s_firmware -
netapp h700s_firmware -
netapp h410s_firmware -

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2021-4197 Eric Biederman reported that incorrect permission checks in the cgroup process migration implementation can allow a local attacker to escalate privileges CVE-2022-0494 The ...

Several security issues were fixed in the Linux kernel ...

CWE-416 https://francozappa.github.io/about-bias/https://kb.cert.org/vuls/id/647177/https://bugzilla.redhat.com/show_bug.cgi?id=1832397 https://www.debian.org/security/2022/dsa-5173 https://security.netapp.com/advisory/ntap-20220722-0002/https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5173 https://ubuntu.com/security/notices/USN-5544-1

CVE-2022-1652

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect