cbcvebase.
CVE-2022-46770
published 2022-12-07

CVE-2022-46770: qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users to cause a denial of service (CPU consumption and loss of…

PriorityP357high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EXPLOIT
EPSS
21.48%
97.3th percentile
qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users to cause a denial of service (CPU consumption and loss of forwarding) via a crafted multicast UDP packet (IP address range of 224.0.0.0 through 239.255.255.255).

Affected

1 ranges
VendorProductVersion rangeFixed in
linuxfoundationmirage_firewall>= 0.8.0 < 0.8.40.8.4
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.