CVE-2022-0615

CWE-416Use After Free3 documents3 sources
Severity
7.5HIGH
EPSS
0.4%
top 37.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Eset, Spol. S R.o. Endpoint Antivirus FOR LinuxEset, Spol. S R.o. Eset Server Security FOR LinuxEset Endpoint Antivirus+1 more
Timeline
PublishedFeb 25
Latest updateFeb 26

Description

Use-after-free in eset_rtp kernel module used in ESET products for Linux allows potential attacker to trigger denial-of-service condition on the system.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages4 packages

CVEListV5eset,_spol._s_r.o./endpoint_antivirus_for_linux7.1.6.07.1.9.0+1
CVEListV5eset,_spol._s_r.o./eset_server_security_for_linux7.2.463.07.2.574.0+1
NVDeset/server_security7.2.463.07.2.574.0+1
NVDeset/endpoint_antivirus7.1.6.07.1.9.0+1

🔴Vulnerability Details

2
GHSA
GHSA-hf4r-5cc6-g88q: Use-after-free in eset_rtp kernel module used in ESET products for Linux allows potential attacker to trigger denial-of-service condition on the syste2022-02-26
CVEList
Use-after-free vulnerability in ESET products for Linux2022-02-25
CVE-2022-0615 (HIGH CVSS 7.5) | Use-after-free in eset_rtp kernel m | cvebase.io