How severe is CVE-2022-33742?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.1 out of 10.

What type of vulnerability is CVE-2022-33742?

This is classified as CWE-200, which is a common weakness in software security.

CVE-2022-33742 - HIGH Severity | CVSS 7.1

Vulnerability Description

Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-2022-26365, CVE-2022-33740). Additionally the granularity of the grant table doesn't allow sharing less than a 4K page, leading to unrelated data residing in the same 4K page as data shared with a backend being accessible by such backend (CVE-2022-33741, CVE-2022-33742).

Related Vulnerabilities

CVE-2016-0089

HIGH

CVSS:7.1(High)

Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS users to obtain sensitive information from host OS memory via a crafted application, aka "Hyper-V Info...

CWE-2002016

CVE-2016-0090

HIGH

CVSS:7.1(High)

Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows 10 allows guest OS users to obtain sensitive information from host OS memory via a crafted application, aka "Hyper-V Information D...

CWE-2002016

CVE-2016-10339

HIGH

CVSS:7.1(High)

In all Android releases from CAF using the Linux kernel, HLOS can overwite secure memory or read contents of the keystore.

CWE-2002016

CVE-2016-1360

HIGH

CVSS:7.1(High)

Cisco Prime LAN Management Solution (LMS) through 4.2.5 uses the same database decryption key across different customers' installations, which allows local users to obtain cleartext data by leveraging...

CWE-2002016

CVE-2016-2015

HIGH

CVSS:7.1(High)

HPE System Management Homepage before 7.5.5 allows local users to obtain sensitive information or modify data via unspecified vectors.

CWE-2002016

CVE-2016-4660

HIGH

CVSS:7.1(High)

An issue was discovered in certain Apple products. iOS before 10.1 is affected. macOS before 10.12.1 is affected. tvOS before 10.0.1 is affected. watchOS before 3.1 is affected. The issue involves the...

CWE-2002016