Google Fuchsia 4.1

CPE Details

Google Fuchsia 4.1
google
fuchsia
4.1
2022-05-10
12h16 +00:00
2022-05-10
17h54 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:google:fuchsia:4.1:*:*:*:*:*:*:*

Informations

Vendor

google

Product

fuchsia

Version

4.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-0882 2022-05-03 15h50 +00:00 A bug exists where an attacker can read the kernel log through exposed Zircon kernel addresses without the required capability ZX_RSRC_KIND_ROOT. It is recommended to upgrade the Fuchsia kernel to 4.1.1 or greater.
5.5
Medium
CVE-2022-0247 2022-02-25 11h10 +00:00 An issue exists in Fuchsia where VMO data can be modified through access to copy-on-write snapshots. A local attacker could modify objects in the VMO that they do not have permission to. We recommend upgrading past commit d97c05d2301799ed585620a9c5c739d36e7b5d3d or any of the listed versions.
7.5
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.