Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-20572
HistoryDec 16, 2022 - 4:15 p.m.

CVE-2022-20572

2022-12-1616:15:19
CWE-862
[email protected]
web.nvd.nist.gov
1
android
privilege escalation
dm-verity-target

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

In verity_target of dm-verity-target.c, there is a possible way to modify read-only files due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-234475629References: Upstream kernel

Affected configurations

NVD
Node
googleandroidMatch-

Related

nessus 19
debiancve 1
redhatcve 1
cve 1
cvelist 1
openvas 16
prion 1
cnvd 1
ubuntucve 1
redhat 4
ubuntu 3
osv 3
ics 1
nessus
nessus
EulerOS 2.0 SP9 : kernel (EulerOS-SA-2023-1486)
2023-03-08 00:00:00
EulerOS 2.0 SP8 : kernel (EulerOS-SA-2023-1347)
2023-02-08 00:00:00
EulerOS 2.0 SP5 : kernel (EulerOS-SA-2023-2181)
2023-06-09 00:00:00
debiancve
debiancve
CVE-2022-20572
2022-12-16 16:15:19
redhatcve
redhatcve
CVE-2022-20572
2023-04-13 17:00:47
cve
cve
CVE-2022-20572
2022-12-16 16:15:19
cvelist
cvelist
CVE-2022-20572
2022-12-16 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2181)
2023-06-09 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1486)
2023-03-09 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1347)
2023-02-09 00:00:00
prion
prion
Design/Logic Flaw
2022-12-16 16:15:00
cnvd
cnvd
Google Android Kernel Elevation of Privilege Vulnerability (CNVD-2023-12019)
2023-02-10 00:00:00
ubuntucve
ubuntucve
CVE-2022-20572
2022-12-16 00:00:00
redhat
redhat
(RHSA-2022:7683) Moderate: kernel security, bug fix, and enhancement update
2022-11-08 06:26:19
(RHSA-2022:7444) Moderate: kernel-rt security and bug fix update
2022-11-08 06:19:55
(RHSA-2022:7933) Moderate: kernel-rt security and bug fix update
2022-11-15 06:11:40
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-04-12 00:00:00
Linux kernel (AWS) vulnerabilities
2023-04-12 00:00:00
Linux kernel (AWS) vulnerabilities
2023-04-06 00:00:00
osv
osv
linux-aws vulnerabilities
2023-04-12 14:41:24
linux, linux-kvm, linux-lts-xenial vulnerabilities
2023-04-12 21:13:23
linux-aws vulnerabilities
2023-04-06 00:13:53
ics
ics
Siemens SIMATIC S7-1500 TM MFP Linux Kernel
2023-06-15 12:00:00

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for NVD:CVE-2022-20572
nessus19debiancve1redhatcve1cve1cvelist1openvas16prion1cnvd1ubuntucve1redhat4ubuntu3osv3ics1