CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3910

Use After Free vulnerability in Linux Kernel allows Privilege Escalation. An improper Update of Reference Count in io_uring leads to Use-After-Free and Local Privilege Escalation. When io_msg_ring was invoked with a fixed file, it called io_fput_file() which improperly decreased its reference count (leading to Use-After-Free and Local Privilege Escalation). Fixed files are permanently registered to the ring, and should not be put separately. We recommend upgrading past commit https://github.com/torvalds/linux/commit/fc7222c3a9f56271fba02aabbfbae999042f1679 https://github.com/torvalds/linux/commit/fc7222c3a9f56271fba02aabbfbae999042f1679

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.6%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2022-3910

Linux » Linux Kernel » Version: 5.18

cpe:2.3:o:linux:linux_kernel:5.18
Linux » Linux Kernel » Version: 5.18.1

cpe:2.3:o:linux:linux_kernel:5.18.1
Linux » Linux Kernel » Version: 5.18.10

cpe:2.3:o:linux:linux_kernel:5.18.10
Linux » Linux Kernel » Version: 5.18.11

cpe:2.3:o:linux:linux_kernel:5.18.11
Linux » Linux Kernel » Version: 5.18.12

cpe:2.3:o:linux:linux_kernel:5.18.12
Linux » Linux Kernel » Version: 5.18.13

cpe:2.3:o:linux:linux_kernel:5.18.13
Linux » Linux Kernel » Version: 5.18.14

cpe:2.3:o:linux:linux_kernel:5.18.14
Linux » Linux Kernel » Version: 5.18.15

cpe:2.3:o:linux:linux_kernel:5.18.15
Linux » Linux Kernel » Version: 5.18.16

cpe:2.3:o:linux:linux_kernel:5.18.16
Linux » Linux Kernel » Version: 5.18.17

cpe:2.3:o:linux:linux_kernel:5.18.17
Linux » Linux Kernel » Version: 5.18.18

cpe:2.3:o:linux:linux_kernel:5.18.18
Linux » Linux Kernel » Version: 5.18.19

cpe:2.3:o:linux:linux_kernel:5.18.19
Linux » Linux Kernel » Version: 5.18.2

cpe:2.3:o:linux:linux_kernel:5.18.2
Linux » Linux Kernel » Version: 5.18.3

cpe:2.3:o:linux:linux_kernel:5.18.3
Linux » Linux Kernel » Version: 5.18.4

cpe:2.3:o:linux:linux_kernel:5.18.4
Linux » Linux Kernel » Version: 5.18.5

cpe:2.3:o:linux:linux_kernel:5.18.5
Linux » Linux Kernel » Version: 5.18.6

cpe:2.3:o:linux:linux_kernel:5.18.6
Linux » Linux Kernel » Version: 5.18.7

cpe:2.3:o:linux:linux_kernel:5.18.7
Linux » Linux Kernel » Version: 5.18.8

cpe:2.3:o:linux:linux_kernel:5.18.8
Linux » Linux Kernel » Version: 5.18.9

cpe:2.3:o:linux:linux_kernel:5.18.9
Linux » Linux Kernel » Version: 5.19

cpe:2.3:o:linux:linux_kernel:5.19
Linux » Linux Kernel » Version: 5.19.1

cpe:2.3:o:linux:linux_kernel:5.19.1
Linux » Linux Kernel » Version: 5.19.10

cpe:2.3:o:linux:linux_kernel:5.19.10
Linux » Linux Kernel » Version: 5.19.2

cpe:2.3:o:linux:linux_kernel:5.19.2
Linux » Linux Kernel » Version: 5.19.3

cpe:2.3:o:linux:linux_kernel:5.19.3
Linux » Linux Kernel » Version: 5.19.4

cpe:2.3:o:linux:linux_kernel:5.19.4
Linux » Linux Kernel » Version: 5.19.5

cpe:2.3:o:linux:linux_kernel:5.19.5
Linux » Linux Kernel » Version: 5.19.6

cpe:2.3:o:linux:linux_kernel:5.19.6
Linux » Linux Kernel » Version: 5.19.7

cpe:2.3:o:linux:linux_kernel:5.19.7
Linux » Linux Kernel » Version: 5.19.8

cpe:2.3:o:linux:linux_kernel:5.19.8
Linux » Linux Kernel » Version: 5.19.9

cpe:2.3:o:linux:linux_kernel:5.19.9
Linux » Linux Kernel » Version: 6.0

cpe:2.3:o:linux:linux_kernel:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3910

Products

Pricing

Contact Us