COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2022-48174

CVE-2022-48174

Severity
critical
Source
NVD · cve
Published
2023-08-22
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2022-48174

Players implicated

busybox · vendordebian · vendorbusybox · productdebian linux · product

Description

There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can be executed from command to arbitrary code execution.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.