CVE-2022-0492

KEV
Published: Mar 03, 2022 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2022-15629 Aliases: GSD-2022-0492
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 7,8
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
MEDIUM 6,9
Source: [email protected]
Access Vector: local
Access Complexity: medium
Authentication: none
Confidentiality: complete
Integrity: complete
Availability: complete

Description

AI Translation Available

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0574
Percentile
0,9th
Updated

EPSS Score Trend (Last 75 Days)

287

Improper Authentication

Draft
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Confidentiality Availability Access Control
Potential Impacts:
Read Application Data Gain Privileges Or Assume Identity Execute Unauthorized Code Or Commands
Applicable Platforms
Technologies: ICS/OT, Not Technology-Specific, Web Based
Likelihood of Exploit: High
View CWE Details
862

Missing Authorization

Incomplete
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality Integrity Access Control Availability
Potential Impacts:
Read Application Data Read Files Or Directories Modify Application Data Modify Files Or Directories Gain Privileges Or Assume Identity Bypass Protection Mechanism Dos: Crash, Exit, Or Restart Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory) Dos: Resource Consumption (Other)
Applicable Platforms
Technologies: AI/ML, Database Server, Not Technology-Specific, Web Server
Likelihood of Exploit: High
View CWE Details
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 2.6.24 (inclusive)
To 4.9.301 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Debian Linux by Debian

Product Information
Vendor Debian
Product Debian Linux
Version 10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Ubuntu Linux by Canonical

Product Information
Vendor Canonical
Product Ubuntu Linux
Version 18.04
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux For Power Little Endian Eus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux For Power Little Endian Eus
Version 8.0
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Ubuntu Linux by Canonical

Product Information
Vendor Canonical
Product Ubuntu Linux
Version 22.04
cpe:2.3:o:canonical:ubuntu_linux:22.04:*:*:*:lts:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Server Update Services For Sap Solutions by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Server Update Services For Sap Solutions
Version 8.2
cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux For Power Little Endian by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux For Power Little Endian
Version 8.0
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Server Update Services For Sap Solutions by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Server Update Services For Sap Solutions
Version 8.1
cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux For Ibm Z Systems Eus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux For Ibm Z Systems Eus
Version 8.0
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions
Version 8.1
cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux For Real Time Tus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux For Real Time Tus
Version 8.0
cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Codeready Linux Builder For Power Little Endian by Redhat

Product Information
Vendor Redhat
Product Codeready Linux Builder For Power Little Endian
Version 8.2
cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Codeready Linux Builder For Power Little Endian by Redhat

Product Information
Vendor Redhat
Product Codeready Linux Builder For Power Little Endian
Version 8.0
cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 5.16 (inclusive)
To 5.16.6 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Server Aus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Server Aus
Version 8.2
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

H700E by Netapp

Product Information
Vendor Netapp
Product H700E
Version -
cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux For Real Time For Nfv Tus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux For Real Time For Nfv Tus
Version 8.2
cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Ubuntu Linux by Canonical

Product Information
Vendor Canonical
Product Ubuntu Linux
Version 16.04
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

H300E by Netapp

Product Information
Vendor Netapp
Product H300E
Version -
cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version 5.17
cpe:2.3:o:linux:linux_kernel:5.17:rc1:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions
Version 8.2
cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

H500E by Netapp

Product Information
Vendor Netapp
Product H500E
Version -
cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Fedora by Fedoraproject

Product Information
Vendor Fedoraproject
Product Fedora
Version 35
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Ubuntu Linux by Canonical

Product Information
Vendor Canonical
Product Ubuntu Linux
Version 14.04
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Eus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Eus
Version 8.2
cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

H410S by Netapp

Product Information
Vendor Netapp
Product H410S
Version -
cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux For Ibm Z Systems by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux For Ibm Z Systems
Version 8.0
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Ubuntu Linux by Canonical

Product Information
Vendor Canonical
Product Ubuntu Linux
Version 20.04
cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Codeready Linux Builder by Redhat

Product Information
Vendor Redhat
Product Codeready Linux Builder
Version 8.0
cpe:2.3:a:redhat:codeready_linux_builder:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

H300S by Netapp

Product Information
Vendor Netapp
Product H300S
Version -
cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

Hci Compute Node by Netapp

Product Information
Vendor Netapp
Product Hci Compute Node
Version -
cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Codeready Linux Builder by Redhat

Product Information
Vendor Redhat
Product Codeready Linux Builder
Version 8.2
cpe:2.3:a:redhat:codeready_linux_builder:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

H700S by Netapp

Product Information
Vendor Netapp
Product H700S
Version -
cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux Server Tus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux Server Tus
Version 8.2
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 4.20 (inclusive)
To 5.4.177 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux For Real Time Tus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux For Real Time Tus
Version 8.2
cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Virtualization Host by Redhat

Product Information
Vendor Redhat
Product Virtualization Host
Version 4.0
cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 4.10 (inclusive)
To 4.14.266 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux For Real Time For Nfv Tus by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux For Real Time For Nfv Tus
Version 8.0
cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 5.11 (inclusive)
To 5.15.20 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

H410C by Netapp

Product Information
Vendor Netapp
Product H410C
Version -
cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Solidfire \& Hci Management Node by Netapp

Product Information
Vendor Netapp
Product Solidfire \& Hci Management Node
Version -
cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Solidfire\, Enterprise Sds \& Hci Storage Node by Netapp

Product Information
Vendor Netapp
Product Solidfire\, Enterprise Sds \& Hci Storage Node
Version -
cpe:2.3:a:netapp:solidfire\,_enterprise_sds_\&_hci_storage_node:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Debian Linux by Debian

Product Information
Vendor Debian
Product Debian Linux
Version 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Hardware

H500S by Netapp

Product Information
Vendor Netapp
Product H500S
Version -
cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 4.15 (inclusive)
To 4.19.229 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version 5.17
cpe:2.3:o:linux:linux_kernel:5.17:rc2:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Enterprise Linux by Redhat

Product Information
Vendor Redhat
Product Enterprise Linux
Version 8.0
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Debian Linux by Debian

Product Information
Vendor Debian
Product Debian Linux
Version 11.0
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 5.5 (inclusive)
To 5.10.97 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
http://packetstormsecurity.com/files/166444/Kernel-Live-Pat…
Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/166444/Kernel-Live-Patch-Security-Notice-L…
http://packetstormsecurity.com/files/167386/Kernel-Live-Pat…
Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-L…
http://packetstormsecurity.com/files/176099/Docker-cgroups-…
http://packetstormsecurity.com/files/176099/Docker-cgroups-Container-Escape.html
https://bugzilla.redhat.com/show_bug.cgi?id=2051505
Issue Tracking Patch Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2051505
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/li…
Patch Vendor Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2…
https://lists.debian.org/debian-lts-announce/2022/03/msg000…
Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/03/msg00011.html
https://lists.debian.org/debian-lts-announce/2022/03/msg000…
Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html
https://security.netapp.com/advisory/ntap-20220419-0002/
Third Party Advisory
https://security.netapp.com/advisory/ntap-20220419-0002/
https://www.debian.org/security/2022/dsa-5095
Third Party Advisory
https://www.debian.org/security/2022/dsa-5095
https://www.debian.org/security/2022/dsa-5096
Third Party Advisory
https://www.debian.org/security/2022/dsa-5096
http://packetstormsecurity.com/files/166444/Kernel-Live-Pat…
Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/166444/Kernel-Live-Patch-Security-Notice-L…
http://packetstormsecurity.com/files/167386/Kernel-Live-Pat…
Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-L…
http://packetstormsecurity.com/files/176099/Docker-cgroups-…
http://packetstormsecurity.com/files/176099/Docker-cgroups-Container-Escape.html
https://bugzilla.redhat.com/show_bug.cgi?id=2051505
Issue Tracking Patch Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2051505
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/li…
Patch Vendor Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2…
https://lists.debian.org/debian-lts-announce/2022/03/msg000…
Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/03/msg00011.html
https://lists.debian.org/debian-lts-announce/2022/03/msg000…
Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html
https://security.netapp.com/advisory/ntap-20220419-0002/
Third Party Advisory
https://security.netapp.com/advisory/ntap-20220419-0002/
https://www.debian.org/security/2022/dsa-5095
Third Party Advisory
https://www.debian.org/security/2022/dsa-5095
https://www.debian.org/security/2022/dsa-5096
Third Party Advisory
https://www.debian.org/security/2022/dsa-5096