CVE-2022-1974

A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAP_NET_ADMIN privilege to leak kernel information.
References
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:5.18:rc6:*:*:*:*:*:*

History

27 Jun 2023, 15:47

Type Values Removed Values Added
CWE CWE-416 CWE-367

Information

Published : 2022-08-31 16:15

Updated : 2024-02-28 19:29


NVD link : CVE-2022-1974

Mitre link : CVE-2022-1974

CVE.ORG link : CVE-2022-1974


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

CWE-416

Use After Free