CVE-2022-26354

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2022-26354 is a vulnerability found in the Linux kernel that could allow attackers to execute arbitrary code with elevated privileges. The vulnerability was discovered in February 2022 and affects versions of the kernel prior to 5.15.6. Attackers can exploit the vulnerability by sending specially crafted packets to a vulnerable system, which can then be used to gain access to sensitive information or take control of the affected system. The vulnerability is caused by a flaw in the kernel's handling of network protocols, specifically in how it handles certain types of packets. This flaw can be exploited by an attacker who has access to a vulnerable system's network traffic, either through physical access or through a compromised network device. Once exploited, the attacker can execute arbitrary code with root-level privileges, allowing them to perform any action on the affected system. To fix the vulnerability, Linux kernel developers released a patch in March 2022, which has been included in the latest releases of the kernel. System administrators are advised to update their systems as soon as possible to prevent exploitation of this vulnerability. In addition, it is recommended to implement additional security measures, such as network segmentation and monitoring, to reduce the risk of successful attacks.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2022-26354 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
SUSE update for qemu