vulnerability

Red Hat: CVE-2022-21499: kernel: possible to use the debugger to write zero into a location of choice (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	Jun 9, 2022	Nov 9, 2022	Nov 14, 2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

Jun 9, 2022

Added

Nov 9, 2022

Modified

Nov 14, 2025

Description

KGDB and KDB allow read and write access to kernel memory, and thus should be restricted during lockdown. An attacker with access to a serial port could trigger the debugger so it is important that the debugger respect the lockdown mode when/if it is triggered. CVSS 3.1 Base Score 6.7 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

Solutions

no-fix-redhat-rpm-packageredhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-787
NVD-CVE-2022-21499
REDHAT-RHSA-2022:7444
REDHAT-RHSA-2022:7683
REDHAT-RHSA-2022:7933
REDHAT-RHSA-2022:8267
REDHAT-RHSA-2024:0724

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today