CVE-2022-48917 - Vulnerability Details

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

References

Link	Providers
https://lore.kernel.org/linux-cve-announce/2024082217-CVE-2022-48917-9b2a@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2022-48917
https://www.cve.org/CVERecord?id=CVE-2022-48917

History

Sat, 10 May 2025 15:45:00 +0000

Type	Values Removed	Values Added
Weaknesses	NVD-CWE-noinfo
CPEs	cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products	Linux Linux linux Kernel
References	https://git.kernel.org/stable/c/050b1821f27c5d4fd5a298f6e62c3d3c9335e622 https://git.kernel.org/stable/c/0b2ecc9163472128e7f30b517bee92dcd27ffc34 https://git.kernel.org/stable/c/6951a5888165a38bb7c39a2d18f5668b2f1241c7 https://git.kernel.org/stable/c/69f42e41256d5a234d3ae0d35fa66dc6d8171846 https://git.kernel.org/stable/c/70712d5afbbea898d5f51fa02e315fe0a4835043 https://git.kernel.org/stable/c/7e0e4bc93811cf600508ff36f07abea7b40643ed https://git.kernel.org/stable/c/9bdd10d57a8807dba0003af0325191f3cec0f11c https://git.kernel.org/stable/c/f3537f1b2bfd3b1df15723df49fc26eccd5112fe
Metrics	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}`	cvssV3_1 `{'score': 5.0, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H'}`

Sat, 10 May 2025 15:15:00 +0000

Type	Values Removed	Values Added
Title	ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min	kernel: ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Sat, 10 May 2025 14:30:00 +0000

Type	Values Removed	Values Added
Description	In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min While the $val/$val2 values passed in from userspace are always >= 0 integers, the limits of the control can be signed integers and the $min can be non-zero and less than zero. To correctly validate $val/$val2 against platform_max, add the $min offset to val first.	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

Fri, 27 Sep 2024 14:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-20

Thu, 12 Sep 2024 13:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Weaknesses		NVD-CWE-noinfo
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel

Wed, 11 Sep 2024 13:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 22 Aug 2024 17:00:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2024082217-CVE-2022-48917-9b2a@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2022-48917 https://www.cve.org/CVERecord?id=CVE-2022-48917
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Thu, 22 Aug 2024 02:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min While the $val/$val2 values passed in from userspace are always >= 0 integers, the limits of the control can be signed integers and the $min can be non-zero and less than zero. To correctly validate $val/$val2 against platform_max, add the $min offset to val first.
Title		ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min
References		https://git.kernel.org/stable/c/050b1821f27c5d4fd5a298f6e62c3d3c9335e622 https://git.kernel.org/stable/c/0b2ecc9163472128e7f30b517bee92dcd27ffc34 https://git.kernel.org/stable/c/6951a5888165a38bb7c39a2d18f5668b2f1241c7 https://git.kernel.org/stable/c/69f42e41256d5a234d3ae0d35fa66dc6d8171846 https://git.kernel.org/stable/c/70712d5afbbea898d5f51fa02e315fe0a4835043 https://git.kernel.org/stable/c/7e0e4bc93811cf600508ff36f07abea7b40643ed https://git.kernel.org/stable/c/9bdd10d57a8807dba0003af0325191f3cec0f11c https://git.kernel.org/stable/c/f3537f1b2bfd3b1df15723df49fc26eccd5112fe

MITRE

Status: REJECTED

Assigner: Linux

Published: 2024-08-22T01:32:20.608Z

Updated: 2025-05-10T14:08:16.032Z

Reserved: 2024-08-21T06:06:23.295Z

Link: CVE-2022-48917

Vulnrichment

Updated:

NVD

Status : Rejected

Published: 2024-08-22T02:15:05.853

Modified: 2025-05-10T15:15:50.627

Link: CVE-2022-48917

Redhat

Severity : Moderate

Publid Date: 2024-08-22T00:00:00Z

Links: CVE-2022-48917 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object