Lucene search
PRIOn knowledge basePRION:CVE-2022-42432HistoryMar 29, 2023 - 7:15 p.m.
Design/Logic Flaw
2023-03-2919:15:00
PRIOn knowledge base
www.prio-n.com
6
design/logic flaw
local attackers
sensitive information disclosure
high-privileged code
memory initialization
arbitrary code execution
zdi-can-18540
nvd
This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel 6.0-rc2. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the nft_osf_eval function. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the kernel. Was ZDI-CAN-18540.
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux_kernel | eq | 6.0 rc2 |
Related
cvelist
cvelist
CVE-2022-42432
2023-03-29 00:00:00
ubuntucve
ubuntucve
CVE-2022-42432
2023-03-29 00:00:00
redhatcve
redhatcve
CVE-2022-42432
2023-03-30 09:21:08
nvd
nvd
CVE-2022-42432
2023-03-29 19:15:17
veracode
veracode
Use Of Uninitialized Variable
2023-05-01 21:46:13
cve
cve
CVE-2022-42432
2023-03-29 19:15:17
zdi
zdi
debiancve
debiancve
CVE-2022-42432
2023-03-29 19:15:17
nessus
nessus
Amazon Linux 2 : kernel (ALASKERNEL-5.4-2022-037)
2022-10-25 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2022-009)
2022-10-25 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-021)
2022-10-25 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-4.0-0275
2022-11-04 00:00:00
redhat
redhat
(RHSA-2022:7933) Moderate: kernel-rt security and bug fix update
2022-11-15 06:11:40
(RHSA-2022:8267) Moderate: kernel security, bug fix, and enhancement update
2022-11-15 06:19:55
ics
ics
Siemens SIMATIC S7-1500 TM MFP Linux Kernel
2023-06-15 12:00:00