Amazon Linux 2 : kernel (ALASKERNEL-5.15-2022-008)

high Nessus Plugin ID 166118

Language:

Version 1.19 Jul 5, 2024, 2:41 PM CVE (set "CVE" coverage to "CVE-2019-25162,CVE-2022-1679,CVE-2022-2585,CVE-2022-2586,CVE-2022-2588,CVE-2022-26373,CVE-2022-2663,CVE-2022-2905,CVE-2022-3028,CVE-2022-3176,CVE-2022-3303,CVE-2022-3625,CVE-2022-39188,CVE-2022-39189,CVE-2022-39190,CVE-2022-40307,CVE-2022-48687,CVE-2023-1095,CVE-2023-2019,CVE-2023-2513,CVE-2023-2860,CVE-2023-3111,CVE-2023-4394,CVE-2024-0562") Detection (updated detection logic) Exploit attributes ("Exploit framework core" set to "True". "Exploitability ease" changed from "Exploits are available" to "No known exploits are available". "Exploited by malware" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin metadata Plugin Feed: 202407051441
Version 1.17 Jun 26, 2024, 11:05 PM CISA reference Plugin Feed: 202406262305
Version 1.16 Jun 10, 2024, 9:01 AM Exploit attributes ("Exploited by malware" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Exploit attributes ("Exploit framework core" set to "True") Plugin Feed: 202406100901
Version 1.15 Jun 8, 2024, 3:36 AM Exploit attributes ("Exploitability ease" changed from "Exploits are available" to "No known exploits are available") CVE (set "CVE" coverage to "CVE-2022-1679,CVE-2022-2585,CVE-2022-2586,CVE-2022-2588,CVE-2022-26373,CVE-2022-2663,CVE-2022-2905,CVE-2022-3028,CVE-2022-3176,CVE-2022-3303,CVE-2022-3625,CVE-2022-39188,CVE-2022-39189,CVE-2022-39190,CVE-2022-40307,CVE-2022-48687,CVE-2023-1095,CVE-2023-2019,CVE-2023-2513,CVE-2023-2860,CVE-2023-3111,CVE-2024-0562") Detection (updated detection logic) Exploit attributes ("Exploit framework core" changed from "True" to none) Exploit attributes ("Exploited by malware" changed from "True" to none) Plugin metadata Plugin Feed: 202406080336
Version 1.14 Apr 11, 2024, 4:12 PM Exploit attributes ("Exploit framework core" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Exploit attributes ("Exploited by malware" set to "True") Plugin Feed: 202404111612
Version 1.12 Feb 7, 2024, 4:20 PM Exploit attributes ("Exploit framework core" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available". "Exploited by malware" set to "True") Plugin Feed: 202402071620
Version 1.11 Feb 7, 2024, 2:22 PM Exploit attributes ("Exploited by malware" set to "True") Exploit attributes ("Exploit framework core" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202402071422
Version 1.10 Oct 25, 2023, 5:17 PM CVSSv3 score source (changed from "CVE-2022-39189" to "CVE-2023-3111") Plugin Feed: 202310251717
Version 1.9 Oct 17, 2023, 6:13 AM Plugin metadata Detection CVE (set "CVE" coverage to "CVE-2022-1679,CVE-2022-2585,CVE-2022-2586,CVE-2022-2588,CVE-2022-26373,CVE-2022-2663,CVE-2022-2905,CVE-2022-3028,CVE-2022-3176,CVE-2022-3303,CVE-2022-3625,CVE-2022-39188,CVE-2022-39189,CVE-2022-39190,CVE-2022-40307,CVE-2023-2019,CVE-2023-2513,CVE-2023-2860,CVE-2023-3111") Plugin Feed: 202310170613
Version 1.8 Sep 5, 2023, 10:10 PM Plugin metadata CVE (set "CVE" coverage to "CVE-2022-1679,CVE-2022-2585,CVE-2022-2586,CVE-2022-2588,CVE-2022-26373,CVE-2022-2663,CVE-2022-2905,CVE-2022-3028,CVE-2022-3176,CVE-2022-3303,CVE-2022-3625,CVE-2022-39188,CVE-2022-39189,CVE-2022-39190,CVE-2022-40307,CVE-2023-2019") CVSS metrics ("CVSSv2 score" changed from 4.3 to 7.2. "CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:M/C:N/I:N/A:C" to "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C". "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H". "CVSSv3 score" changed from 4.4 to 7.8) CVSSv2 score source (changed from "CVE-2023-2019" to "CVE-2022-1679") CVSSv2 severity (based on CVE-2022-1679, severity increased from "Medium" to "High") CVSSv3 score source (set to "CVE-2022-39189") CVSSv3 severity (based on CVE-2022-39189, severity increased from "Medium" to "High") Plugin Feed: 202309052210
Version 1.7 May 17, 2023, 12:01 PM CVSSv3 score source (changed from "CVE-2022-39189" to "CVE-2023-2019") CVE (set "CVE" coverage to "CVE-2023-2019") CVSS metrics ("CVSSv2 score" changed from 7.2 to 4.3. "CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C" to "CVSS2#AV:L/AC:L/Au:M/C:N/I:N/A:C". "CVSSv3 score" changed from 7.8 to 4.4. "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H") CVSSv2 score source (changed from "CVE-2022-1679" to "CVE-2023-2019") CVSSv2 severity (based on CVE-2023-2019, severity decreased from "High" to "Medium") CVSSv3 severity (based on CVE-2023-2019, severity decreased from "High" to "Medium") Detection Plugin metadata Plugin Feed: 202305171201
Version 1.6 Mar 22, 2023, 9:58 AM Regenerated based on advisory update Plugin Feed: 202303220958
Version 1.5 Jan 12, 2023, 6:19 PM Exploit attributes ("Exploit framework core" set to "True") Plugin Feed: 202301121819
Version 1.4 Dec 7, 2022, 4:47 PM CVE (set "CVE" coverage to "CVE-2022-39188") Plugin metadata Plugin Feed: 202212071647
Version 1.3 Oct 17, 2022, 7:53 PM Exploit attributes Plugin Feed: 202210171953
Version 1.2 Oct 14, 2022, 2:03 PM New Plugin Feed: 202210141403

* Changelogs are generally available for changes made after Nov 1, 2022