Lucene search

K
redhatcveRedhat.comRH:CVE-2022-3202
HistorySep 13, 2022 - 2:13 p.m.

CVE-2022-3202

2022-09-1314:13:14
redhat.com
access.redhat.com
23
cve-2022-3202
difree
journaled file system
linux kernel
local attacker
system crash
kernel information

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

EPSS

0

Percentile

5.1%

A NULL pointer dereference flaw was found in diFree in fs/jfs/inode.c in the Journaled File System (JFS)in the Linux kernel. This flaw allows a local attacker to crash the system or leak internal kernel information.

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

EPSS

0

Percentile

5.1%