COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2022-0185

CVE-2022-0185

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2024-08-21
Reference
https://nvd.nist.gov/vuln/detail/CVE-2022-0185
⌖ exploited in the wild shame 50/100 exploited-in-wild

Linux kernel contains a heap-based buffer overflow vulnerability in the legacy_parse_param function in the Filesystem Context functionality. This allows an attacker to open a filesystem that does not support the Filesystem Context API and ultimately escalate privileges.

Players implicated

linux · vendorKernel · product

Description

Linux kernel contains a heap-based buffer overflow vulnerability in the legacy_parse_param function in the Filesystem Context functionality. This allows an attacker to open a filesystem that does not support the Filesystem Context API and ultimately escalate privileges.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.