Lucene search

K
cvelistRedhatCVELIST:CVE-2022-4283
HistoryDec 14, 2022 - 12:00 a.m.

CVE-2022-4283

2022-12-1400:00:00
redhat
www.cve.org

8.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.9%

A vulnerability was found in X.Org. This security flaw occurs because the XkbCopyNames function left a dangling pointer to freed memory, resulting in out-of-bounds memory access on subsequent XkbGetKbdByName requests… This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for ssh X forwarding sessions.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "xorg-x11-server",
    "versions": [
      {
        "version": "xorg-x11-server-1.20.4",
        "status": "affected"
      }
    ]
  }
]