CVE-2022-48925

Summary

CVE-2022-48925 is a vulnerability located in the Linux kernel that allows for a use-after-free condition due to improper state checks during RDMA communication, affecting multiple products. The flaw occurs when an attempt is made to change the source address without verifying if the state is idle, potentially leading to corruption of the src_addr and subsequent errors in operations. This vulnerability poses a high risk with an exploitability score of 1.8 and a base severity rating of 7.8, indicating significant impacts on confidentiality, integrity, and availability. Organizations are advised to apply available patches from the Linux kernel's official repositories to remediate this issue. Failure to address this vulnerability could result in unauthorized access or disruptions within affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.