4.3
CVE-2022-0812
- EPSS 1.1%
- Veröffentlicht 29.08.2022 15:15:09
- Zuletzt bearbeitet 21.11.2024 06:39:26
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpc_rdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 5.8.0
Linux ≫ Linux Kernel Version5.8.0 Updaterc1
Linux ≫ Linux Kernel Version5.8.0 Updaterc2
Linux ≫ Linux Kernel Version5.8.0 Updaterc3
Linux ≫ Linux Kernel Version5.8.0 Updaterc4
Linux ≫ Linux Kernel Version5.8.0 Updaterc5
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.1% | 0.615 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 2.8 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
https://access.redhat.com/security/cve/CVE-2022-0812
https://bugzilla.redhat.com/show_bug.cgi?id=2058361
https://bugzilla.redhat.com/show_bug.cgi?id=2058955
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=912288442cb2f431bf3c8cb097a5de83bc6dbac1
https://security.netapp.com/advisory/ntap-20230427-0011/
https://ubuntu.com/security/CVE-2022-0812