CVE-2022-3625
Linux Kernel IPsec devlink.c devlink_param_get use after free
CVSS Score
4.6
EPSS Score
0.0%
EPSS Percentile
0th
A vulnerability was found in Linux Kernel. It has been classified as critical. This affects the function devlink_param_set/devlink_param_get of the file net/core/devlink.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier VDB-211929 was assigned to this vulnerability.
| CWE | CWE-119 |
| Vendor | linux |
| Product | kernel |
| Ecosystems | |
| Industries | Technology |
| Published | Oct 21, 2022 |
| Last Updated | Aug 3, 2024 |
Stay Ahead of the Next One
Get instant alerts for linux kernel
Be the first to know when new medium vulnerabilities affecting linux kernel are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L Attack Vector
Adjacent
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
Low
Affected Versions
Linux / Kernel
n/a