Lucene search
Veracode Vulnerability DatabaseVERACODE:40358HistoryMay 01, 2023 - 9:46 p.m.
Use Of Uninitialized Variable
2023-05-0121:46:13
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
linux-gke
uninitialized variable
nft_osf_eval
high-privileged code
arbitrary code
vulnerability
memory initialization
kernel security
0.0004 Low
EPSS
Percentile
16.1%
linux-gke is vulnerable to Use of Uninitialized Variable. The vulnerability allows users with the ability to execute high-privileged code to exploit the flaws within ‘nft_osf_eval function’ causing a lack of proper initialization of memory prior to accessing it resulting in the attacker gaining access to execute arbitrary code as the kernel.
Related
cvelist
cvelist
CVE-2022-42432
2023-03-29 00:00:00
redhatcve
redhatcve
CVE-2022-42432
2023-03-30 09:21:08
nvd
nvd
CVE-2022-42432
2023-03-29 19:15:17
prion
prion
Design/Logic Flaw
2023-03-29 19:15:00
ubuntucve
ubuntucve
CVE-2022-42432
2023-03-29 00:00:00
zdi
zdi
debiancve
debiancve
CVE-2022-42432
2023-03-29 19:15:17
cve
cve
CVE-2022-42432
2023-03-29 19:15:17
nessus
nessus
Amazon Linux 2 : kernel (ALASKERNEL-5.4-2022-037)
2022-10-25 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-021)
2022-10-25 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2022-009)
2022-10-25 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-4.0-0275
2022-11-04 00:00:00
redhat
redhat
(RHSA-2022:7933) Moderate: kernel-rt security and bug fix update
2022-11-15 06:11:40
(RHSA-2022:8267) Moderate: kernel security, bug fix, and enhancement update
2022-11-15 06:19:55
ics
ics
Siemens SIMATIC S7-1500 TM MFP Linux Kernel
2023-06-15 12:00:00