Lucene search
HistoryJun 04, 2024 - 10:15 p.m.
CVE-2022-28658
cve-2022-28658
apport
filename splitting
argument spoofing
older kernels
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing
Affected configurations
Node
apport_projectapportRange<2.21.0
Node
canonicalubuntu_linuxMatch18.04esm
ORcanonicalubuntu_linuxMatch20.04lts
ORcanonicalubuntu_linuxMatch21.10-
ORcanonicalubuntu_linuxMatch22.04lts
Related
cvelist
cvelist
CVE-2022-28658
2024-06-04 22:03:53
veracode
veracode
Spoofing Attacks
2022-05-18 17:37:54
ubuntucve
ubuntucve
CVE-2022-28658
2022-05-17 00:00:00
cve
cve
CVE-2022-28658
2024-06-04 22:15:10
openvas
openvas
Ubuntu: Security Advisory (USN-5427-1)
2022-05-18 00:00:00
nessus
nessus
ubuntu
ubuntu
Apport vulnerabilities
2022-05-17 00:00:00
osv
osv
apport vulnerabilities
2022-05-17 16:38:36
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for NVD:CVE-2022-28658