Lucene search

K
cvelistRedhatCVELIST:CVE-2022-0382
HistoryFeb 11, 2022 - 12:00 a.m.

CVE-2022-0382

2022-02-1100:00:00
CWE-909
redhat
www.cve.org

5.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

An information leak flaw was found due to uninitialized memory in the Linux kernel’s TIPC protocol subsystem, in the way a user sends a TIPC datagram to one or more destinations. This flaw allows a local user to read some kernel memory. This issue is limited to no more than 7 bytes, and the user cannot control what is read. This flaw affects the Linux kernel versions prior to 5.17-rc1.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "kernel",
    "versions": [
      {
        "version": "Linux kernel versions prior to 5.17-rc1",
        "status": "affected"
      }
    ]
  }
]

5.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%