Lucene search

K
cveMitreCVE-2022-43750
HistoryOct 26, 2022 - 4:15 a.m.

CVE-2022-43750

2022-10-2604:15:13
CWE-787
mitre
web.nvd.nist.gov
208
13
cve-2022-43750
linux kernel
usbmon
memory corruption
nvd
security
vulnerability
5.19.15
6.0.1

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

6.7

Confidence

High

EPSS

0

Percentile

14.2%

drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor’s internal memory.

Affected configurations

Nvd
Node
linuxlinux_kernelRange2.6.214.9.331
OR
linuxlinux_kernelRange4.104.14.296
OR
linuxlinux_kernelRange4.154.19.262
OR
linuxlinux_kernelRange4.205.4.218
OR
linuxlinux_kernelRange5.55.10.148
OR
linuxlinux_kernelRange5.115.15.73
OR
linuxlinux_kernelRange5.165.19.15
OR
linuxlinux_kernelRange6.06.0.1
Node
debiandebian_linuxMatch10.0
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
debiandebian_linux10.0cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Social References

More

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

6.7

Confidence

High

EPSS

0

Percentile

14.2%