Lucene search

K
cvelistRedhatCVELIST:CVE-2022-3107
HistoryDec 14, 2022 - 12:00 a.m.

CVE-2022-3107

2022-12-1400:00:00
CWE-476
redhat
www.cve.org

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

An issue was discovered in the Linux kernel through 5.16-rc6. netvsc_get_ethtool_stats in drivers/net/hyperv/netvsc_drv.c lacks check of the return value of kvmalloc_array() and will cause the null pointer dereference.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Kernel",
    "versions": [
      {
        "version": "Linux 5.16-rc6",
        "status": "affected"
      }
    ]
  }
]

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%