Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-69201
HistoryMar 14, 2022 - 12:00 a.m.

Linux kernel denial of service vulnerability (CNVD-2022-69201)

2022-03-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
13

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

4.9 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:N/A:P

Linux kernel is the kernel used by the Linux Foundation’s open source operating system, Linux. Linux kernel is vulnerable to a denial-of-service vulnerability caused by a β€œuse before read” flaw in the sock_getsockopt() function in net/core/sock.c. " flaw in the sock_getsockopt() function in net/core/sock.c. A locally authenticated attacker could use this flaw to crash the system or obtain internal kernel information.

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

4.9 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:N/A:P