CVE-2022-41717:
Overview
- Severity
- Medium (CVSS 5.3)
- CVSS Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
- Exploit Status
- Not Exploited
- Patch Tuesday
- 2024-Dec
- Released
- 2022-12-13
- Last Updated
- 2024-12-03
- EPSS Score
- 0.33% (percentile: 56.0%)
Detection & Weaponization (1 sources)
Maturity: Exploit
- GitHub PoC: 1 repositories
Affected Products (6)
Mariner
- CBL Mariner 1.0 x64
- CBL Mariner 1.0 ARM
- CBL Mariner 2.0 x64
- CBL Mariner 2.0 ARM
- Azure Linux 3.0 x64
- Azure Linux 3.0 ARM
Revision History
- 2022-12-13: Information published.
- 2024-01-24: Added sriov-network-device-plugin to CBL-Mariner 2.0
- 2024-02-12: Added nmi to CBL-Mariner 2.0
- 2024-04-11: Added cri-o to CBL-Mariner 2.0
- 2024-06-30: Information published.
- 2024-09-06: Information published.
- 2024-09-07: Information published.
- 2024-09-08: Information published.
- 2024-09-11: Information published.
- 2024-10-05: Information published.
- 2024-10-16: Added prometheus to CBL-Mariner 2.0
Added containerized-data-importer to CBL-Mariner 2.0
Added azcopy to CBL-Mariner 2.0
Added cri-o to CBL-Mariner 2.0
Added moby-cli to CBL-Mariner 2.0
Added nmi to CBL-Mariner 2.0
Added sriov-network-device-plugin to CBL-Mariner 2.0
Added golang to CBL-Mariner 2.0
Added moby-engine to Azure Linux 3.0
Added sriov-network-device-plugin to Azure Linux 3.0
Added prometheus to Azure Linux 3.0
Added golang to CBL-Mariner 1.0
- 2024-12-03: Added containerized-data-importer to CBL-Mariner 2.0
Added prometheus to CBL-Mariner 2.0
Added azcopy to CBL-Mariner 2.0
Added cri-o to CBL-Mariner 2.0
Added moby-cli to CBL-Mariner 2.0
Added nmi to CBL-Mariner 2.0
Added sriov-network-device-plugin to CBL-Mariner 2.0
Added golang to CBL-Mariner 2.0
Added moby-engine to Azure Linux 3.0
Added sriov-network-device-plugin to Azure Linux 3.0
Added prometheus to Azure Linux 3.0
Added golang to CBL-Mariner 1.0