CVE Alert: CVE-2022-21546
Vulnerability Summary: CVE-2022-21546
In newer version of the SBC specs, we have a NDOB bit that indicates there is no data buffer that gets written out. If this bit is set using commands like “sg_write_same –ndob” we will crash in target_core_iblock/file’s execute_write_same handlers when we go to access the se_cmd->t_data_sg because its NULL. CVSS 3.1 Base Score 7.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H).
Affected Endpoints:
No affected endpoints listed.
Published Date:
5/2/2025, 10:15:15 PM
🔥 CVSS Score:
Exploit Status:
Not ExploitedReferences:
- https://git.kernel.org/linus/ccd3f449052449a917a3e577d8ba0368f43b8f29
- https://linux.oracle.com/cve/CVE-2022-21546.html
- https://lore.kernel.org/all/[email protected]/
Recommended Action:
No proposed action available. Please refer to vendor documentation for updates.
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
