CVE-2022-3239

CVSS v3.1 7.8 (High)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 28

A flaw use after free in the Linux kernel video4linux driver was found in the way user triggers em28xx_usb_probe() for the Empia 28xx based TV cards. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.

Weaknesses

CWE-416: Use After Free

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2022-09-19 20:15:12
(2 years ago)
Updated Date: 2023-02-14 13:15:11
(19 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel from 3.15 version and prior 4.14.295 version	cpe:2.3:o:linux:linux_kernel	>= 3.15	< 4.14.295
Linux Kernel from 4.15 version and prior 4.19.238 version	cpe:2.3:o:linux:linux_kernel	>= 4.15	< 4.19.238
Linux Kernel from 4.20 version and prior 5.4.189 version	cpe:2.3:o:linux:linux_kernel	>= 4.20	< 5.4.189
Linux Kernel from 5.5 version and prior 5.10.110 version	cpe:2.3:o:linux:linux_kernel	>= 5.5	< 5.10.110
Linux Kernel from 5.11 version and prior 5.15.33 version	cpe:2.3:o:linux:linux_kernel	>= 5.11	< 5.15.33
Linux Kernel from 5.16 version and prior 5.16.19 version	cpe:2.3:o:linux:linux_kernel	>= 5.16	< 5.16.19
Linux Kernel from 5.17 version and prior 5.17.2 version	cpe:2.3:o:linux:linux_kernel	>= 5.17	< 5.17.2