CVE-2022-48936

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 22, 2024

Summary

CVE-2022-48936 is a vulnerability found in the Linux kernel that affects various products including those with net_failover enabled and IPVS load balancers. The issue arises during the transmission of IPIP packets, where the outer IP header is not modified correctly, leading to potential TCP drop issues in cloud environments. This vulnerability has a medium severity rating with a CVSS score of 5.5, indicating a low attack complexity and local attack vector. Organizations can remediate this vulnerability by applying the appropriate patches available from the Linux kernel repository. If exploited, this vulnerability poses a high availability impact, potentially disrupting network services within affected systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share