Lucene search

K
ubuntucveUbuntu.comUB:CVE-2022-45919
HistoryNov 27, 2022 - 12:00 a.m.

CVE-2022-45919

2022-11-2700:00:00
ubuntu.com
ubuntu.com
15

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

3.5 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.2%

An issue was discovered in the Linux kernel through 6.0.10. In
drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is
there is a disconnect after an open, because of the lack of a wait_event.

Bugs

Notes

Author Note
Priority reason: Exploiting this vulnerability requires disconnecting a DVB device, which is why this has been prioritized as low.
sbeattie exploiting this vulnerability requires disconnecting a DVB device, which is why this has been prioritized as low.
Rows per page:
1-10 of 671

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

3.5 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

5.2%