VulDB Recent Entries

A vulnerability has been found in UCI IDOL up to 2.12 and classified as critical. This vulnerability affects unknown code. The manipulation leads to buffer overflow. This vulnerability was named CVE-2024-45167. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.25/5.16.11. This affects the function num_channels of the component tsc2046. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2022-48927. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.15.26/5.16.12. Affected by this issue is the function list_add of the component iommu. The manipulation leads to denial of service. This vulnerability is handled as CVE-2022-48916. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.16.12. Affected by this vulnerability is the function com20020pci_probe of the component arcnet. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2022-48908. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.16.11. Affected is the function int3400_notify of the component thermal. The manipulation leads to memory leak. This vulnerability is traded as CVE-2022-48924. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.25/5.16.11. It has been rated as problematic. This issue affects the function copy_compressed_segment of the component btrfs. The manipulation leads to allocation of resources. The identification of this vulnerability is CVE-2022-48923. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.26/5.16.12. It has been declared as critical. This vulnerability affects the function debugfs_dir of the component iwlwifi. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2022-48918. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.103/5.15.26/5.16.12. It has been classified as critical. This affects the function get_trip_hyst of the component thermal. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-48915. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.26/5.16.12 and classified as critical. Affected by this issue is the function blk_trace_free of the component blktrace. The manipulation leads to use after free. This vulnerability is handled as CVE-2022-48913. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.16.12 and classified as critical. Affected by this vulnerability is the function sock_hold of the component nf_queue. The manipulation leads to use after free. This vulnerability is known as CVE-2022-48911. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.10.102/5.15.25/5.16.11. Affected is the function kvm_arch_can_dequeue_async_page_present of the component KVM. The manipulation leads to state issue. This vulnerability is traded as CVE-2022-48943. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.10.102/5.15.25/5.16.11. This issue affects the function devm_thermal_zone_of_sensor_register of the component hwmon. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2022-48942. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.10.102/5.15.25/5.16.11. This vulnerability affects the function trace_hardirqs_on/trace_hardirqs_off of the component riscv. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2022-48922. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.10.136/5.15.26/5.16.12. This affects the function sched_fork. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-48921. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.9/5.10/5.10.102/5.15.25/5.16.11. It has been rated as critical. Affected by this issue is the function resolve_prepare_src of the component RDMA. The manipulation leads to use after free. This vulnerability is handled as CVE-2022-48925. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.102/5.15.25/5.16.11. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component CDC-NCM. The manipulation leads to buffer overflow. This vulnerability is known as CVE-2022-48938. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.4.181/5.10.102/5.15.25/5.16.11. It has been classified as critical. Affected is the function nfp_tunnel_add_shared_mac. The manipulation leads to memory leak. This vulnerability is traded as CVE-2022-48934. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.16.11 and classified as problematic. This issue affects the function mlx5_cmd_dr_create_fte. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2022-48932. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.16.11 and classified as critical. This vulnerability affects the function cancel_work_sync of the component ib_srp. The manipulation leads to deadlock. This vulnerability was named CVE-2022-48930. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.16.11. This affects the function list_add of the component rndis. The manipulation leads to race condition. This vulnerability is uniquely identified as CVE-2022-48926. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.