CVE-2022-49145

HIGH EPSS 17.1%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
7.1 CVSS 3.1
High
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Avoid out of bounds access when parsing _CPC data If the NumEntries field in the _CPC return package is less than 2, do not attempt to access the "Revision" element of that package, because it may not be present then. BugLink: https://lore.kernel.org/lkml/20220322143534.GC32582@xsang-OptiPlex-9020/

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
17.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-125 Out-of-bounds Read Memory Safety

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥4.4  –  <4.9.311
linuxlinux_kernel*≥4.10  –  <4.14.276
linuxlinux_kernel*≥4.15  –  <4.19.238
linuxlinux_kernel*≥4.20  –  <5.4.189
linuxlinux_kernel*≥5.5  –  <5.10.110
linuxlinux_kernel*≥5.11  –  <5.15.33
linuxlinux_kernel*≥5.16  –  <5.16.19
linuxlinux_kernel*≥5.17  –  <5.17.2

References 9

  • git.kernel.org https://git.kernel.org/stable/c/28d5387c1994f5e1e0d41b30a1f3dd6e1f609252
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/40d8abf364bcab23bc715a9221a3c8623956257b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/97b5593fd1b182b3fdb180b6bbe64ec09669988b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b3f15609ffa521de12244cd6af24002030dda3f5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b80b19b32a432c9eee1cd200ef7aaddf608f54d1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cb249f8c00f40dba83b7da8207ac14ca46e9ec9e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d208ea44e25b31db5a4d5e8c31df51787a3e9303
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d7339f2a3938fb56b5f28d53f5345900b5fa0e74
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5b681822cac1f8093759b02e16c06b2c64b6788
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/28d5387c1994f5e1e0d41b30a1f3dd6e1f609252
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/40d8abf364bcab23bc715a9221a3c8623956257b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/97b5593fd1b182b3fdb180b6bbe64ec09669988b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b3f15609ffa521de12244cd6af24002030dda3f5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b80b19b32a432c9eee1cd200ef7aaddf608f54d1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cb249f8c00f40dba83b7da8207ac14ca46e9ec9e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d208ea44e25b31db5a4d5e8c31df51787a3e9303
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d7339f2a3938fb56b5f28d53f5345900b5fa0e74
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e5b681822cac1f8093759b02e16c06b2c64b6788
    Patch