Vulnerabilities > CVE-2022-1734 - Use After Free vulnerability in multiple products

047910
CVSS 7.0 - HIGH
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
high complexity
linux
debian
netapp
CWE-416

Summary

A flaw in Linux Kernel found in nfcmrvl_nci_unregister_dev() in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine.

Vulnerable Configurations

Part Description Count
OS
Linux
5216
OS
Debian
2
OS
Netapp
8
Hardware
Netapp
8

Common Weakness Enumeration (CWE)