Lucene search

K
nvd[email protected]NVD:CVE-2022-43750
HistoryOct 26, 2022 - 4:15 a.m.

CVE-2022-43750

2022-10-2604:15:13
CWE-787
web.nvd.nist.gov
6
linux
usb monitor
memory corruption

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

14.2%

drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor’s internal memory.

Affected configurations

Nvd
Node
linuxlinux_kernelRange2.6.214.9.331
OR
linuxlinux_kernelRange4.104.14.296
OR
linuxlinux_kernelRange4.154.19.262
OR
linuxlinux_kernelRange4.205.4.218
OR
linuxlinux_kernelRange5.55.10.148
OR
linuxlinux_kernelRange5.115.15.73
OR
linuxlinux_kernelRange5.165.19.15
OR
linuxlinux_kernelRange6.06.0.1
Node
debiandebian_linuxMatch10.0
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
debiandebian_linux10.0cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

14.2%