CVE-2022-41848 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-41848 PUBLISHED

Es existieren mehrere Schwachstellen im Linux Kernel. In den Treibern "drivers/hid/hid-roccat.c", "drivers/video/fbdev/smscufx.c" und "drivers/char/pcmcia/synclink_cs.c" kommt es unter bestimmten Umständen zu einer Race Kondition und daraus folgend zu einem Use after Free Fehler. Ein Angreifer mit physischem Zugriff kann diese Schwachstellen ausnutzen, um nicht näher spezifizierte Auswirkungen zu verursachen.

EPSS 0.03% · 7.5th percentile

Risk Scores

EPSS Score

0.03%

7.5th percentile

Affected Products

Vendor	Product	Versions
Amazon	Amazon Linux 2
Debian	Debian Linux
Dell	Dell ECS <3.8.1.0
Ubuntu	Ubuntu Linux
Open Source	Open Source Linux Kernel <= 5.19.12
Oracle	Oracle VM
Oracle	Oracle Linux
SUSE	SUSE Linux
Dell	Dell PowerEdge

Timeline

Sep 29, 2022 CVE Published
Sep 30, 2022 EPSS Score
Nov 13, 2022 EPSS Score
Dec 27, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 24, 2023 EPSS Score
May 7, 2023 EPSS Score
Jun 20, 2023 EPSS Score
Jul 18, 2023 CVE Updated
Aug 3, 2023 EPSS Score
Sep 16, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1583.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1583 advisory
https://ubuntu.com/security/notices/USN-6235-1 advisory
https://oss.oracle.com/pipermail/el-errata/2023-June/014226.html advisory
https://ubuntu.com/security/notices/USN-6043-1 advisory
https://ubuntu.com/security/notices/USN-6040-1 advisory
https://ubuntu.com/security/notices/USN-6031-1 advisory
https://ubuntu.com/security/notices/USN-6014-1 advisory
https://ubuntu.com/security/notices/USN-6007-1 advisory
https://ubuntu.com/security/notices/USN-6001-1 advisory
https://ubuntu.com/security/notices/USN-5976-1 advisory
https://ubuntu.com/security/notices/USN-5975-1 advisory
https://ubuntu.com/security/notices/USN-5924-1 advisory
https://ubuntu.com/security/notices/USN-5918-1 advisory
https://ubuntu.com/security/notices/USN-5909-1 advisory
https://nvd.nist.gov/vuln/detail/CVE-2022-41848 advisory
https://nvd.nist.gov/vuln/detail/CVE-2022-41849 advisory
https://nvd.nist.gov/vuln/detail/CVE-2022-41850 advisory
https://lists.suse.com/pipermail/sle-security-updates/2022-October/012536.html advisory
https://lists.suse.com/pipermail/sle-security-updates/2022-October/012539.html advisory

…and 51 more

Open in Interactive Console →