Shodan
Vulnerabilities
Vulnerable Software
Linux:  >> Linux Kernel  >> 2.6.21.5  Security Vulnerabilities
CVE-2022-36946
nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.
CVSS Score
7.5
EPSS Score
0.047
Published
2022-07-27
CVE-2022-36879
An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-07-27
CVE-2020-36558
A race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault.
CVSS Score
5.1
EPSS Score
0.0
Published
2022-07-21
CVE-2020-36557
A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.
CVSS Score
5.1
EPSS Score
0.0
Published
2022-07-21
CVE-2021-33656
When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds.
CVSS Score
6.8
EPSS Score
0.0
Published
2022-07-18
CVE-2021-33655
When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.
CVSS Score
6.7
EPSS Score
0.0
Published
2022-07-18
CVE-2021-4135
A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsim_map_alloc_elem being called. A local user could use this flaw to get unauthorized access to some data.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-07-14
CVE-2022-2380
The Linux kernel was found vulnerable out of bounds memory access in the drivers/video/fbdev/sm712fb.c:smtcfb_read() function. The vulnerability could result in local attackers being able to crash the kernel.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-07-13
CVE-2011-4916
Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /dev/pts/ and /dev/tty*.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-07-12
CVE-2022-2318
There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-07-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved