CVE-2022-3635

ADVISORY - nist

Summary

A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function tst_timer of the file drivers/atm/idt77252.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. VDB-211934 is the identifier assigned to this vulnerability.

EPSS Score⁠: 0.00009 (0.007)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-119⁠

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-362⁠

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

ADVISORY - redhat

CWE-416⁠

Use After Free

Impacted images

Advisories

NIST

CREATED

3 years ago

UPDATED

8 months ago

ADVISORY IDCVE-2022-3635⁠

EXPLOITABILITY SCORE

2.1

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-119⁠CWE-362⁠

CVSS SCORE

5.5medium

Debian

CREATED

3 years ago

UPDATED

4 months ago

ADVISORY IDCVE-2022-3635⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

3 years ago

UPDATED

1 month ago

ADVISORY IDCVE-2022-3635⁠

EXPLOITABILITY SCORE

1.0

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7low

Red Hat

CREATED

3 years ago

UPDATED

4 months ago

ADVISORY IDCVE-2022-3635⁠

EXPLOITABILITY SCORE

1.0

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-416⁠

CVSS SCORE

7medium

Photon

CREATED

8 months ago

UPDATED

4 days ago

ADVISORY ID

CVE-2022-3635

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7high

intheWild

CREATED

4 months ago

UPDATED

4 months ago

ADVISORY IDCVE-2022-3635⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY