CVE-2022-49855 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-49855 PUBLISHED CVSS 5.5 MEDIUM

Reported by Linux · Published May 1, 2025

In the Linux kernel, the following vulnerability has been resolved: net: wwan: iosm: fix memory leak in ipc_pcie_read_bios_cfg ipc_pcie_read_bios_cfg() is using the acpi_evaluate_dsm() to obtain the wwan power state configuration from BIOS but is not freeing the acpi_object. The acpi_evaluate_dsm() returned acpi_object to be freed. Free the acpi_object after use.

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Linux	Linux	7e98d785ae6184c7580a33619dae8b651769ff08, 7e98d785ae6184c7580a33619dae8b651769ff08, 7e98d785ae6184c7580a33619dae8b651769ff08
Linux	Linux	5.14, 0, 5.15.79
linux	linux_kernel	5.14, 5.14, 5.14
Linux	Linux	6.0.9, 6.1, *

Timeline

May 1, 2025 CVE Published
May 2, 2025 EPSS Score
May 13, 2025 EPSS Score
May 25, 2025 EPSS Score
Jun 5, 2025 EPSS Score
Jun 16, 2025 EPSS Score
Jun 27, 2025 EPSS Score
Jul 9, 2025 EPSS Score
Jul 20, 2025 EPSS Score
Jul 31, 2025 EPSS Score
Aug 11, 2025 EPSS Score
Aug 23, 2025 EPSS Score

References

Open in Interactive Console →