CVE-2022-48967

NFC: nci: Bounds check struct nfc_target arrays

Severity Score

7.1

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

MITRE
TN

In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Bounds check struct nfc_target arrays While running under CONFIG_FORTIFY_SOURCE=y, syzkaller reported: memcpy: detected field-spanning write (size 129) of single field "target->sensf_res" at net/nfc/nci/ntf.c:260 (size 18) This appears to be a legitimate lack of bounds checking in
nci_add_new_protocol(). Add the missing checks.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-08-22 CVE Reserved
2024-10-21 CVE Published
2024-12-19 CVE Updated
2025-03-20 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/019c4fbaa790e2b3f11dab0c8b7d9896d77db3e5	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/6b37f0dc0638d13a006f2f24d2f6ca61e83bc714	2022-12-14
https://git.kernel.org/stable/c/dbdcfb9f6748218a149f62468d6297ce3f014e9c	2022-12-14
https://git.kernel.org/stable/c/cff35329070b96b4484d23f9f48a5ca2c947e750	2022-12-14
https://git.kernel.org/stable/c/6778434706940b8fad7ef35f410d2b9929f256d2	2022-12-14
https://git.kernel.org/stable/c/27eb2d7a1b9987b6d0429b7716b1ff3b82c4ffc9	2022-12-14
https://git.kernel.org/stable/c/908b2da426fe9c3ce74cf541ba40e7a4251db191	2022-12-14
https://git.kernel.org/stable/c/f41547546db9af99da2c34e3368664d7a79cefae	2022-12-14
https://git.kernel.org/stable/c/e329e71013c9b5a4535b099208493c7826ee4a64	2022-12-06

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 4.9.336 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 4.9.336"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 4.14.302 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 4.14.302"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 4.19.269 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 4.19.269"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 5.4.227 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 5.4.227"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 5.10.159 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 5.10.159"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 5.15.83 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 5.15.83"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 6.0.13 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 6.0.13"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 3.4 < 6.1 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.4 < 6.1"		en		Affected