CVE-2022-0850

Exploit

A vulnerability was found in linux kernel, where an information leak occurs via ext4_extent_header to userspace.

Affected products Warnungen 0 Metrics 2 CWE 1 References 7

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version < 4.4.276

Linux ≫ Linux Kernel Version >= 4.5 < 4.9.276

Linux ≫ Linux Kernel Version >= 4.10 < 4.14.240

Linux ≫ Linux Kernel Version >= 4.15 < 4.19.198

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.132

Linux ≫ Linux Kernel Version >= 5.5.0 < 5.10.50

Linux ≫ Linux Kernel Version >= 5.11 < 5.12.17

Linux ≫ Linux Kernel Version >= 5.13 < 5.13.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.043

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Third Party Advisory

Third Party Advisory

Exploit

Issue Tracking

Patch

Vendor Advisory

Mailing List

Third Party Advisory

Exploit

Mailing List

CVE Source (NVD)

CVE Source (JSON)

EUVD