Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2022-0995Out-of-bounds Write in Kernel

CWE-787Out-of-bounds Write31 documents9 sources
Severity
7.8HIGHNVD
EPSS
15.2%
top 5.38%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
5
Linux KernelDebian LinuxFedoraproject Fedora+2 more
Timeline
PublishedMar 25
Latest updateSep 18

Description

An out-of-bounds (OOB) memory write flaw was found in the Linux kernel’s watch_queue event notification subsystem. This flaw can overwrite parts of the kernel state, potentially allowing a local user to gain privileged access or cause a denial of service on the system.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages7 packages

NVDlinux/linux_kernel5.85.10.106+3
Debianlinux/linux_kernel< 5.10.106-1+3
Ubuntulinux/linux_kernel< 5.15.0-138.148+9
CVEListV5linux/linux_kernelkernel 5.17 rc8
debiandebian/linux< linux 5.16.18-1 (bookworm)

Also affects: Fedora 35

Patches

Patch: bugzilla.redhat.comPatch: git.kernel.orgPatch: bugzilla.redhat.com

🔴Vulnerability Details

13
OSV
Kernel Live Patch Security Notice2025-05-29
OSV
linux-xilinx-zynqmp vulnerabilities2025-05-02
OSV
linux-aws-5.15 vulnerabilities2025-04-29
OSV
linux-gcp-5.15 vulnerabilities2025-04-28
OSV
linux-oracle-5.15 vulnerabilities2025-04-25

💥Exploits & PoCs

1
Metasploit
Watch Queue Out of Bounds Write

📋Vendor Advisories

14
Ubuntu
Kernel Live Patch Security Notice2025-05-29
Ubuntu
Linux kernel (Xilinx ZynqMP) vulnerabilities2025-05-02
Ubuntu
Linux kernel (AWS) vulnerabilities2025-04-29
Ubuntu
Linux kernel (GCP) vulnerabilities2025-04-28
Ubuntu
Linux kernel (Oracle) vulnerabilities2025-04-25

📄Research Papers

2
arXiv
ATLANTIS: AI-driven Threat Localization, Analysis, and Triage Intelligence System2025-09-18
arXiv
Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems2024-09-07