KEVIntel
Back to KEVs
5.3
CVSS
Medium

CVE-2022-2586

PUBLISHED

It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table...

Exploited in the wild No user interaction
Vendor
The Linux Kernel Organization
Product
linux
Published
Jan 08, 2024
EPSS

Description

It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.

linux cisa nessus_scanner

CVSS scores

CVSS v3.1 5.3 Medium

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H

Exploitation status

Exploited in the wild

Recorded 2024-06-26 00:00:00 UTC · Source

SSVC decision points

Exploitation
active
Automatable
No
Technical impact
total

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CISA Jun 26, 2024

Scanner integrations

Scanner Reference Detected
Nessus https://www.tenable.com/plugins/nessus/236648 Jun 02, 2025

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

sniper404ghostxploit/CVE-2022-2586

github · Created 2022-11-06 07:34:32 UTC · 3 stars

gcc exploit.c -o exploit -lmnl -lnftnl -no-pie -lpthread

aels/CVE-2022-2586-LPE

github · Created 2022-09-03 19:04:31 UTC · 16 stars

CVE-2022-2586: Linux kernel nft_object UAF

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel

  • Detected by Nessus