CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%
Davide Ornaghi discovered that the netfilter subsystem in the Linux kernel
did not properly handle VLAN headers in some situations. A local attacker
could use this to cause a denial of service (system crash) or possibly
execute arbitrary code. (CVE-2023-0179)
Hu Jiahui discovered that multiple race conditions existed in the Advanced
Linux Sound Architecture (ALSA) framework, leading to use-after-free
vulnerabilities. A local attacker could use these to cause a denial of
service (system crash) or possibly execute arbitrary code. (CVE-2022-1048)
It was discovered that a use-after-free vulnerability existed in the SGI
GRU driver in the Linux kernel. A local attacker could possibly use this to
cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2022-3424)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 22.04 | noarch | linux-image-6.1.0-1006-oem | < 6.1.0-1006.6 | UNKNOWN |
Ubuntu | 22.04 | noarch | linux-image-6.1.0-1006-oem-dbgsym | < 6.1.0-1006.6 | UNKNOWN |
Ubuntu | 22.04 | noarch | linux-image-oem-22.04c | < 6.1.0.1006.6 | UNKNOWN |
Ubuntu | 22.04 | noarch | linux-headers-oem-22.04c | < 6.1.0.1006.6 | UNKNOWN |
Ubuntu | 22.04 | noarch | linux-modules-ipu6-oem-22.04c | < 6.1.0.1006.6 | UNKNOWN |
Ubuntu | 22.04 | noarch | linux-modules-ivsc-oem-22.04c | < 6.1.0.1006.6 | UNKNOWN |
Ubuntu | 22.04 | noarch | linux-oem-22.04c | < 6.1.0.1006.6 | UNKNOWN |
Ubuntu | 22.04 | noarch | linux-tools-oem-22.04c | < 6.1.0.1006.6 | UNKNOWN |
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%