Amazon Linux AMI : kernel (ALAS-2023-1706)

high Nessus Plugin ID 173273

Language:

Version 1.11 Apr 12, 2024, 12:08 AM CVE (set "CVE" coverage to "CVE-2022-3643,CVE-2022-42328,CVE-2022-42329,CVE-2023-0045,CVE-2023-0394,CVE-2023-0459,CVE-2023-0461,CVE-2023-1073") CVSS metrics ("CVSSv3 score" set to 7.8) CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H") CVSSv3 score source (set to "CVE-2023-0461") Detection (updated detection logic) Plugin metadata Plugin Feed: 202404120008
Version 1.10 Feb 7, 2024, 4:20 PM Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202402071620
Version 1.9 Feb 6, 2024, 12:33 PM CVE (set "CVE" coverage to "CVE-2022-3643,CVE-2022-42328,CVE-2022-42329,CVE-2023-0045,CVE-2023-0394,CVE-2023-0459,CVE-2023-1073") CVSS metrics ("CVSSv2 score" set to 7.8. "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N". "CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N". "CVSSv3 score" set to 7.5) CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") CVSSv2 score source (changed from "CVE-2023-0459" to "CVE-2023-0045") CVSSv2 severity (based on CVE-2023-0045, severity increased from "Medium" to "High") CVSSv3 severity (based on None, severity increased from "Medium" to "High") Detection (updated detection logic) Exploit attributes ("Exploit available" set to "True") Plugin metadata Plugin Feed: 202402061233
Version 1.9 Feb 7, 2024, 2:22 PM Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202402071422
Version 1.8 Aug 2, 2023, 10:14 PM Plugin metadata Plugin Feed: 202308022214
Version 1.8 Feb 6, 2024, 10:48 AM CVE (set "CVE" coverage to "CVE-2022-3643,CVE-2022-42328,CVE-2022-42329,CVE-2023-0045,CVE-2023-0394,CVE-2023-0459,CVE-2023-1073") CVSS metrics ("CVSSv2 score" set to 7.8) CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N") CVSS metrics ("CVSSv3 score" set to 7.5) CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") CVSSv2 score source (changed from "CVE-2023-0459" to "CVE-2023-0045") CVSSv2 severity (based on CVE-2023-0045, severity increased from "Medium" to "High") CVSSv3 severity (based on None, severity increased from "Medium" to "High") Detection (updated detection logic) Exploit attributes ("Exploit available" set to "True") Plugin metadata Plugin Feed: 202402061048
Version 1.7 Jun 2, 2023, 4:12 PM CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C" to "CVSS2#AV:L/AC:L/Au:S/C:C/I:N/A:N". "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N". "CVSSv3 score" changed from 6.5 to 5.5) CVSSv2 score source (changed from "CVE-2023-0394" to "CVE-2023-0459") CVSSv3 score source (changed from "CVE-2022-3643" to "CVE-2023-0459") Plugin Feed: 202306021612
Version 1.6 May 14, 2023, 6:02 AM CVSS metrics ("CVSSv2 score" changed from 10.0 to 4.6. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C" to "CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C". "CVSSv3 score" changed from 10.0 to 6.5. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H") CVSSv2 score source (changed from "CVE-2022-3643" to "CVE-2023-0394") CVSSv2 severity (based on CVE-2023-0394, severity decreased from "High" to "Medium") CVSSv3 score source (set to "CVE-2022-3643") CVSSv3 severity (based on CVE-2022-3643, severity decreased from "High" to "Medium") Plugin Feed: 202305140602
Version 1.5 May 14, 2023, 2:08 AM CVSS metrics ("CVSSv2 score" changed from 10.0 to 4.6. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C" to "CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C". "CVSSv3 score" changed from 10.0 to 6.5. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H") CVSSv2 score source (changed from "CVE-2022-3643" to "CVE-2023-0394") CVSSv2 severity (based on CVE-2023-0394, severity decreased from "High" to "Medium") CVSSv3 score source (set to "CVE-2022-3643") CVSSv3 severity (based on CVE-2022-3643, severity decreased from "High" to "Medium") Plugin Feed: 202305140208
Version 1.4 May 11, 2023, 8:47 PM CVSS metrics ("CVSSv2 score" changed from 10.0 to 4.6. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C" to "CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C". "CVSSv3 score" changed from 10.0 to 6.5. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" to "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H") CVSSv2 score source (changed from "CVE-2022-3643" to "CVE-2023-0394") CVSSv2 severity (based on CVE-2023-0394, severity decreased from "High" to "Medium") CVSSv3 score source (set to "CVE-2022-3643") CVSSv3 severity (based on CVE-2022-3643, severity decreased from "High" to "Medium") Plugin Feed: 202305112047
Version 1.3 May 2, 2023, 5:57 PM Regenerated based on advisory update Plugin Feed: 202305021757
Version 1.2 Apr 11, 2023, 4:07 PM Plugin metadata Plugin Feed: 202304111607
Version 1.1 Apr 5, 2023, 3:58 AM Regenerated based on advisory update Plugin Feed: 202304050358
Version 1.0 Mar 23, 2023, 3:59 AM New Plugin Feed: 202303230359

* Changelogs are generally available for changes made after Nov 1, 2022