7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0005 Low
EPSS
Percentile
18.9%
The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier
on the x86_64 platform does not properly handle (1) a 32-bit process making
a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which
allows local users to bypass certain syscall audit configurations via
crafted syscalls, a related issue to CVE-2009-0342 and CVE-2009-0343.