CVE-2022-48927

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 22, 2024
Updated: Aug 23, 2024
CWE ID 787

Summary

CVE-2022-48927 is a vulnerability in the Linux kernel affecting various products, including several device drivers. The issue arises from a memory corruption flaw resulting from an array overflow, where the channel count used does not align with the allocated array size. Organizations can remediate this vulnerability by applying patches available through the Linux kernel source links provided in related documentation. The potential danger posed by this vulnerability includes high integrity and confidentiality impact, with an exploitability score of 1.8 and a base severity rating of 7.8, indicating that it requires low privileges and no user interaction for exploitation. If exploited, this vulnerability could lead to significant disruption and unauthorized access within affected systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share