How severe is CVE-2022-28193?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.6 out of 10.

What type of vulnerability is CVE-2022-28193?

This is classified as CWE-20, which is a common weakness in software security.

CVE-2022-28193

MEDIUM Year: 2022

CVSS v3 Score

5.6

Medium

CVSS v2 Score

4.6

Medium

Weakness Type

CWE-20

View all →

Vulnerability Description

NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c, where insufficient validation of untrusted data may allow a local attacker with elevated privileges to cause a memory buffer overflow, which may lead to code execution, loss of integrity, limited denial of service, and some impact to confidentiality.

CVE-2016-4825

MEDIUM

CVSS:5.6(Medium)

The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via crafted serialized data.

CWE-202016

CVE-2017-17565

MEDIUM

CVSS:5.6(Medium)

An issue was discovered in Xen through 4.9.x allowing PV guest OS users to cause a denial of service (host OS crash) if shadow mode and log-dirty mode are in place, because of an incorrect assertion r...

CWE-202017

CVE-2018-0888

MEDIUM

CVSS:5.6(Medium)

The Microsoft Hyper-V Network Switch in 64-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and ...

CWE-202018

CVE-2008-7316

MEDIUM

CVSS:5.5(Medium)

mm/filemap.c in the Linux kernel before 2.6.25 allows local users to cause a denial of service (infinite loop) via a writev system call that triggers an iovec of zero length, followed by a page fault ...

CWE-202008