VDB
CVE-2022-0995
CVE-2022-0995
PUBLISHED
In Google Android existieren mehrere Schwachstellen. Die Fehler bestehen in den Komponenten Framework, Media Framework, System, Google Play System-Updates, Kernel-Komponenten, Imagination Technologies, MediaTek-Komponenten, Unisoc-Komponenten, Qualcomm-Komponenten, Qualcomm Closed-Source-Komponenten und Pixel. Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen und beliebigen Code auszuführen. Um die Schwachstelle erfolgreich auszunutzen, ist eine Benutzeraktion erforderlich, z. B. die Nutzung bösartiger Apps oder Websites.
EPSS 22.21% · 95.9th percentile
Risk Scores
EPSS Score
22.21%
95.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Google Android 11 | ||
| Google Android 10 | ||
| Red Hat | Red Hat Enterprise Linux | |
| Ubuntu | Ubuntu Linux | |
| Open Source | Open Source Linux Kernel | |
| Avaya | Avaya Aura System Manager | |
| Avaya | Avaya Aura Session Manager | |
| Avaya | Avaya Aura Communication Manager | |
| Debian | Debian Linux | |
| Google Android 12 | ||
| Avaya | Avaya Aura Experience Portal | |
| Oracle | Oracle Linux | |
| SUSE | SUSE Linux | |
| Amazon | Amazon Linux 2 | |
| Google Android 12L | ||
| Avaya | Avaya Aura Application Enablement Services |
Exploit Intelligence
- Реализация средств повышения привилегий в Linux (github-poc-repo)
- Реализация средств повышения привилегий в Linux (github-poc-repo)
- Реализация средств повышения привилегий в Linux (github-poc-repo)
- Реализация средств повышения привилегий в Linux (github-poc-repo)
- Реализация средств повышения привилегий в Linux (github-poc-repo)
- Реализация средств повышения привилегий в Linux (github-poc-repo)
- Реализация средств повышения привилегий в Linux (github-poc-repo)
- CVE-2022-0995 exploit (github-poc-repo)
- CVE-2022-0995 exploit (github-poc-repo)
- CVE-2022-0995 exploit (github-poc-repo)
…and 49 more exploits
Timeline
- Mar 25, 2022 CVE Published
- Mar 26, 2022 EPSS Score
- Apr 21, 2022 PoC Published
- Apr 22, 2022 EPSS Score
- Aug 2, 2024 CVE Updated
- Feb 13, 2025 PoC Published
- Mar 17, 2025 EPSS Score
- Mar 20, 2025 EPSS Score
- Mar 28, 2025 EPSS Score
- Mar 28, 2025 PoC Published
- Mar 30, 2025 EPSS Score
- Apr 6, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0156.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0156 advisory
- https://access.redhat.com/security/cve/cve-2022-0886 advisory
- https://access.redhat.com/security/cve/cve-2022-0995 advisory
- https://access.redhat.com/security/cve/cve-2022-1011 advisory
- https://access.redhat.com/security/cve/CVE-2021-45868 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010687.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010701.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010723.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010731.html advisory
- https://cxsecurity.com/issue/WLB-2022040080 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010749.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010755.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010751.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010754.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010746.html advisory
- https://ubuntu.com/security/notices/USN-5381-1 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010768.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010777.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010815.html advisory
…and 73 more