Vulnerabilities > CVE-2022-3523 - Use After Free vulnerability in Linux Kernel

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

high complexity

linux

CWE-416

NVD

Published: 2022-10-16

Updated: 2024-11-21

Summary

A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is an unknown function of the file mm/memory.c of the component Driver Handler. The manipulation leads to use after free. It is possible to launch the attack remotely. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211020.

Vulnerable Configurations

Part	Description	Count
OS	Linux Linux Linux Kernel -	1

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=16ce101db85db694a91380aa4c89b25530871d33
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=16ce101db85db694a91380aa4c89b25530871d33
https://vuldb.com/?id.211020
https://vuldb.com/?id.211020