Lucene search
HistoryJun 04, 2024 - 10:15 p.m.
CVE-2022-28658
cve-2022-28658
nvd
information security
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing
Affected configurations
Node
apport_projectapportRange<2.21.0
Node
canonicalubuntu_linuxMatch18.04esm
ORcanonicalubuntu_linuxMatch20.04lts
ORcanonicalubuntu_linuxMatch21.10-
ORcanonicalubuntu_linuxMatch22.04lts
| CPE | Name | Operator | Version |
|---|---|---|---|
| apport_project:apport | apport project apport | lt | 2.21.0 |
CNA Affected
[
{
"packageName": "apport",
"product": "Apport",
"vendor": "Canonical Ltd.",
"repo": "https://github.com/canonical/apport",
"platforms": [
"Linux"
],
"versions": [
{
"lessThan": "2.21.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
cvelist
cvelist
CVE-2022-28658
2024-06-04 22:03:53
veracode
veracode
Spoofing Attacks
2022-05-18 17:37:54
ubuntucve
ubuntucve
CVE-2022-28658
2022-05-17 00:00:00
nvd
nvd
CVE-2022-28658
2024-06-04 22:15:10
ubuntu
ubuntu
Apport vulnerabilities
2022-05-17 00:00:00
osv
osv
apport vulnerabilities
2022-05-17 16:38:36
nessus
nessus
openvas
openvas
Ubuntu: Security Advisory (USN-5427-1)
2022-05-18 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2022-28658