First published: Mon Oct 17 2022(Updated: )
A use-after-free in the function area_cache_get of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c of the component IPsec in Linux Kernel could allow a remote authenticated attacker from within the local network to cause an unknown impact.
Credit: cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kernel | <6.0 | 6.0 |
IBM Security Verify Governance - Identity Manager | <=ISVG 10.0.2 | |
IBM Security Verify Governance - Identity Manager | <=ISVG 10.0.2 | |
Linux Kernel | >=4.11<4.14.303 | |
Linux Kernel | >=4.15<4.19.270 | |
Linux Kernel | >=4.20<5.4.228 | |
Linux Kernel | >=5.5<5.10.160 | |
Linux Kernel | >=5.11<5.15.84 | |
All of | ||
NetApp H410C | ||
NetApp H410C Firmware | ||
All of | ||
NetApp H300S Firmware | ||
NetApp H300S Firmware | ||
All of | ||
NetApp H500e Firmware | ||
NetApp H500e Firmware | ||
All of | ||
NetApp H700S | ||
NetApp H700S | ||
All of | ||
NetApp H410S | ||
NetApp H410S Firmware | ||
Debian Linux | =10.0 | |
Debian Linux | =11.0 | |
NetApp H410C | ||
NetApp H410C Firmware | ||
NetApp H300S Firmware | ||
NetApp H300S Firmware | ||
NetApp H500e Firmware | ||
NetApp H500e Firmware | ||
NetApp H700S | ||
NetApp H700S | ||
NetApp H410S | ||
NetApp H410S Firmware | ||
debian/linux | 5.10.223-1 5.10.234-1 6.1.129-1 6.1.128-1 6.12.20-1 6.12.21-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-3545 is classified as a vulnerability that could allow a remote authenticated attacker to cause unknown impacts.
To mitigate CVE-2022-3545, you should upgrade to kernel version 6.0 or later for Red Hat and 5.10.223-1 or later for Debian.
CVE-2022-3545 affects various versions of the Linux kernel, Debian Linux, and IBM Security Verify Governance components.
Yes, CVE-2022-3545 can potentially be exploited by a remote authenticated attacker from within the same local network.
CVE-2022-3545 affects the IPsec component of the Linux Kernel, specifically in the function area_cache_get.