CVE-2022-2586
| CVE Published | 2024-01-08 |
|---|---|
| Related CWE(s) | CWE-416: Use After Free |
| Related Vendor(s) | linux, canonical |
| Related Product(s) | linux_kernel, ubuntu_linux |
| Exploitation Reported (CISA KEV) | 2024-06-26 |
| CVSS 3 Base Score | 7.8 (HIGH) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | LOCAL |
It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph