Lucene search

K

Redhat.comRH:CVE-2022-21216

HistoryFeb 19, 2023 - 10:59 a.m.

CVE-2022-21216

2023-02-1910:59:19

redhat.com

access.redhat.com

19

linux

kernel

privilege escalation

intel

processors

security vulnerability

network access

7.5 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L

0.0004 Low

EPSS

Percentile

9.2%

A flaw was found in the Linux kernel. A potential security vulnerability in some Intel® Atom® and Intel® Xeon® Scalable Processors may allow privilege escalation. This flaw may allow a privileged user to enable privilege escalation via adjacent network access.

References

bugzilla.redhat.com/show_bug.cgi?id=2171227

github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20230214

nvd.nist.gov/vuln/detail/CVE-2022-21216

www.cve.org/CVERecord?id=CVE-2022-21216

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00700.html

7.5 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:L

0.0004 Low

EPSS

Percentile

9.2%

Related for RH:CVE-2022-21216

ibm1 nessus17 ubuntucve1 prion1 intel1 nvd1 cve1 f51 osv3 debiancve1 veracode1 alpinelinux1 cvelist1 openvas11 amazon3 redhat1 rocky2 fedora4 ubuntu1 cloudfoundry1 rosalinux1 mageia1 debian1