Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-0492

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.

Published

2022-03-03T19:15:08.633

Last Modified

2024-11-21T06:38:46.193

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

  • Access Vector: LOCAL
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

3.4

Impact Score

10.0

Weaknesses
  • Type: Secondary
    CWE-287
  • Type: Primary
    CWE-862
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System linux linux_kernel < 4.9.301 Yes
Operating System linux linux_kernel < 4.14.266 Yes
Operating System linux linux_kernel < 4.19.229 Yes
Operating System linux linux_kernel < 5.4.177 Yes
Operating System linux linux_kernel < 5.10.97 Yes
Operating System linux linux_kernel < 5.15.20 Yes
Operating System linux linux_kernel < 5.16.6 Yes
Operating System linux linux_kernel 5.17 Yes
Operating System linux linux_kernel 5.17 Yes
Operating System debian debian_linux 9.0 Yes
Operating System debian debian_linux 10.0 Yes
Operating System debian debian_linux 11.0 Yes
Application redhat codeready_linux_builder 8.0 Yes
Application redhat codeready_linux_builder 8.2 Yes
Application redhat codeready_linux_builder_for_power_little_endian 8.0 Yes
Application redhat codeready_linux_builder_for_power_little_endian 8.2 Yes
Application redhat virtualization_host 4.0 Yes
Operating System redhat enterprise_linux 8.0 Yes
Operating System redhat enterprise_linux_eus 8.2 Yes
Operating System redhat enterprise_linux_for_ibm_z_systems 8.0 Yes
Operating System redhat enterprise_linux_for_ibm_z_systems_eus 8.0 Yes
Operating System redhat enterprise_linux_for_power_little_endian 8.0 Yes
Operating System redhat enterprise_linux_for_power_little_endian_eus 8.0 Yes
Operating System redhat enterprise_linux_for_real_time_for_nfv_tus 8.0 Yes
Operating System redhat enterprise_linux_for_real_time_for_nfv_tus 8.2 Yes
Operating System redhat enterprise_linux_for_real_time_tus 8.0 Yes
Operating System redhat enterprise_linux_for_real_time_tus 8.2 Yes
Operating System redhat enterprise_linux_server_aus 8.2 Yes
Operating System redhat enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 8.1 Yes
Operating System redhat enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 8.2 Yes
Operating System redhat enterprise_linux_server_tus 8.2 Yes
Operating System redhat enterprise_linux_server_update_services_for_sap_solutions 8.1 Yes
Operating System redhat enterprise_linux_server_update_services_for_sap_solutions 8.2 Yes
Operating System canonical ubuntu_linux 14.04 Yes
Operating System canonical ubuntu_linux 16.04 Yes
Operating System canonical ubuntu_linux 18.04 Yes
Operating System canonical ubuntu_linux 20.04 Yes
Operating System canonical ubuntu_linux 22.04 Yes
Operating System fedoraproject fedora 35 Yes
Application netapp solidfire\,_enterprise_sds_\&_hci_storage_node - Yes
Application netapp solidfire_\&_hci_management_node - Yes
Hardware netapp h300e - Yes
Hardware netapp h300s - Yes
Hardware netapp h410c - Yes
Hardware netapp h410s - Yes
Hardware netapp h500e - Yes
Hardware netapp h500s - Yes
Hardware netapp h700e - Yes
Hardware netapp h700s - Yes
Hardware netapp hci_compute_node - Yes
References