Exposures › CVE-2022-0492
Linux kernel privilege escalation via cgroups v1 release_agent was actively exploited in the wild.
This vulnerability allowed attackers to escalate privileges by bypassing authentication checks in the cgroups v1 release_agent feature, enabling remote code execution on Linux systems. Defense-industrial-base organizations must immediately patch affected kernels to prevent unauthorized access to sensitive systems and data.
Shame score — Active exploitation in the wild with no vendor liability or settlement, indicating widespread unpatched systems.
Linux Kernel contains an improper authentication vulnerability which could allow for privilege escalation via the cgroups v1 release_agent feature.
No correlated FedRAMP products.