Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-3636

Опубликовано: 21 окт. 2022
Источник: nvd
CVSS3: 5.5
CVSS3: 7.8
EPSS Низкий

Описание

A vulnerability, which was classified as critical, was found in Linux Kernel. This affects the function __mtk_ppe_check_skb of the file drivers/net/ethernet/mediatek/mtk_ppe.c of the component Ethernet Handler. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211935.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*

EPSS

Процентиль: 4%
0.00018
Низкий

5.5 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-119
CWE-416

Связанные уязвимости

ubuntu логотип

CVE-2022-3636

CVSS3: 5.5
ubuntu
больше 3 лет назад

A vulnerability, which was classified as critical, was found in Linux Kernel. This affects the function __mtk_ppe_check_skb of the file drivers/net/ethernet/mediatek/mtk_ppe.c of the component Ethernet Handler. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211935.

redhat логотип

CVE-2022-3636

CVSS3: 7.8
redhat
почти 4 года назад

A vulnerability, which was classified as critical, was found in Linux Kernel. This affects the function __mtk_ppe_check_skb of the file drivers/net/ethernet/mediatek/mtk_ppe.c of the component Ethernet Handler. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211935.

debian логотип

CVE-2022-3636

CVSS3: 5.5
debian
больше 3 лет назад

A vulnerability, which was classified as critical, was found in Linux ...

github логотип

GHSA-wp33-7frp-g7vg

CVSS3: 7.8
github
больше 3 лет назад

A vulnerability, which was classified as critical, was found in Linux Kernel. This affects the function __mtk_ppe_check_skb of the file drivers/net/ethernet/mediatek/mtk_ppe.c of the component Ethernet Handler. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211935.

fstec логотип

BDU:2024-00867

CVSS3: 7.8
fstec
почти 4 года назад

Уязвимости функции __mtk_ppe_check_skb() в модуле drivers/net/ethernet/mediatek/mtk_ppe.c ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 4%
0.00018
Низкий

5.5 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-119
CWE-416