CVE-2022-2586
HIGH CISA KEV EPSS 95.8%
Published Jan 8, 20242y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
Published Jan 8, 2024 2y ago
Last Modified Jun 17, 2026 2w ago
KEV Listed Jun 26, 2024 2y ago
KEV Due Jul 17, 2024 718d overdue
Description
It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
CISA Known Exploited Overdue 718d
- Added
- Jun 26, 2024
- Due
- Jul 17, 2024
Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.
EPSS Exploit Probability
95.8% percentile
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available
Weaknesses 1
CWE-416 Use After Free Memory Safety
Affected Products 7
References 15
- cve.mitre.org https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2586
- lore.kernel.org https://lore.kernel.org/netfilter-devel/20220809170148.164591-1-cascardo@canonical.com/T/#t
- ubuntu.com https://ubuntu.com/security/notices/USN-5557-1
- ubuntu.com https://ubuntu.com/security/notices/USN-5560-1
- ubuntu.com https://ubuntu.com/security/notices/USN-5560-2
- ubuntu.com https://ubuntu.com/security/notices/USN-5562-1
- ubuntu.com https://ubuntu.com/security/notices/USN-5564-1
- ubuntu.com https://ubuntu.com/security/notices/USN-5565-1
- ubuntu.com https://ubuntu.com/security/notices/USN-5566-1
- ubuntu.com https://ubuntu.com/security/notices/USN-5567-1
- ubuntu.com https://ubuntu.com/security/notices/USN-5582-1
- cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-2586
- openwall.com https://www.openwall.com/lists/oss-security/2022/08/09/5
- vicarius.io https://www.vicarius.io/vsociety/posts/use-after-free-vulnerability-linked-chain-between-nft-tables-cve-2022-2586
- zerodayinitiative.com https://www.zerodayinitiative.com/advisories/ZDI-22-1118/
Remediation
- lore.kernel.org https://lore.kernel.org/netfilter-devel/20220809170148.164591-1-cascardo@canonical.com/T/#t