CVE-2022-3077 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-3077 PUBLISHED CVSS 8.699999809265137 HIGH

Es existiert eine Schwachstelle im Linux Kernel. Im Intel iSMT SMBus-Host-Controller-Treiber in derin der Funktion ismt_access() der Datei drivers/i2c/busses/i2c-ismt.c. befindet sich ein Problem bezüglich Speicherzugriff außerhalb der Grenzen. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service zu verursachen.

EPSS 0.03% · 6.9th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.03%

6.9th percentile

Affected Products

Vendor	Product	Versions
Red Hat	Red Hat Enterprise Linux
SUSE	SUSE Linux
Red Hat	Red Hat OpenShift Logging Subsystem 5.4.12
Oracle	Oracle VM 3
Red Hat	Red Hat OpenShift 5 Logging Subsystem
Ubuntu	Ubuntu Linux
Oracle	Oracle Linux
IBM	IBM Spectrum Protect plus 10.1
Debian	Debian Linux
Red Hat	Red Hat OpenShift Logging Subsystem 5.6.3

Timeline

Aug 17, 2022 CVE Published
Sep 10, 2022 EPSS Score
Oct 25, 2022 EPSS Score
Dec 8, 2022 EPSS Score
Jan 22, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 21, 2023 EPSS Score
Jun 4, 2023 EPSS Score
Jul 19, 2023 EPSS Score
Sep 1, 2023 EPSS Score
Oct 16, 2023 EPSS Score
Nov 29, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1074.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1074 advisory
https://access.redhat.com/errata/RHSA-2023:5627 advisory
https://www.ibm.com/support/pages/node/7005589 advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html advisory
http://linux.oracle.com/errata/ELSA-2023-12207.html advisory
http://linux.oracle.com/errata/ELSA-2023-12206.html advisory
http://linux.oracle.com/errata/ELSA-2023-12199.html advisory
https://linux.oracle.com/errata/ELSA-2023-12200.html advisory
https://access.redhat.com/errata/RHSA-2023:0930 advisory
https://access.redhat.com/errata/RHSA-2023:0931 advisory
https://access.redhat.com/errata/RHSA-2023:0932 advisory
https://oss.oracle.com/pipermail/oraclevm-errata/2023-March/001069.html advisory
http://linux.oracle.com/errata/ELSA-2023-12160.html advisory
https://linux.oracle.com/errata/ELSA-2023-12160.html advisory
https://lists.debian.org/debian-lts-announce/2023/03/msg00000.html advisory
http://linux.oracle.com/errata/ELSA-2023-0951.html advisory
https://access.redhat.com/errata/RHSA-2023:0951 advisory
https://access.redhat.com/errata/RHSA-2023:0979 advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2119048 advisory

…and 17 more

Open in Interactive Console →