CVE-2022-27666 vulnerability in Linux and Other Products
Published on March 23, 2022

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2022-27666

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-27666 are published in these products:

Linux Kernel

Fedora Project Fedora

Red Hat Virtualization

Red Hat Enterprise Linux (RHEL)

Canonical Ubuntu Linux

Debian Linux

Exploit Probability

EPSS

0.82%

Percentile

74.03%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-27666 vulnerability in Linux and Other ProductsPublished on March 23, 2022

Products Associated with CVE-2022-27666

Exploit Probability

CVE-2022-27666 vulnerability in Linux and Other Products
Published on March 23, 2022