Rewterz Threat Advisory – ICS: Hitachi Energy RTU500 Vulnerability
August 25, 2022Rewterz Threat Alert – Mirai Botnet – Active IOCs
August 25, 2022Rewterz Threat Advisory – ICS: Hitachi Energy RTU500 Vulnerability
August 25, 2022Rewterz Threat Alert – Mirai Botnet – Active IOCs
August 25, 2022Severity
High
Analysis Summary
CVE-2022-2959
Linux Kernel could allow a local authenticated attacker to gain elevated privileges on the system, caused by a race condition in the watch queue due to a missing lock in the pipe_resize_ring() function. By sending a specially-crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges and execute arbitrary code in the context of the kernel.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2022-2959
Affected Vendors
Linux
Affected Products
Linux Kernel 5.18
Remediation
Refer to Linux Kernel Advisory for patch, upgrade or suggested workaround information.