CVE-2022-2586
Linux Kernel Use-After-Free Vulnerability
CVSS
—
No CVSS
EPSS
12.7%
p96
KEV
YES
Jun 26, 2024
Exploit Today
79
0-100
Published: — · Last modified: —
Product
Linux / Kernel
Vulnerability
Linux Kernel Use-After-Free Vulnerability
Added to KEV
Jun 26, 2024
Remediate by
Jul 17, 2024
Known ransomware use
No
Summary description
Linux Kernel contains a use-after-free vulnerability in the nft_object, allowing local attackers to escalate privileges.
Required action
Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.
Notes
This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. For more information, please see: https://seclists.org/oss-sec/2022/q3/131; https://nvd.nist.gov/vuln/detail/CVE-2022-2586