CVE-2022-49581

Advisory lineage Upstream: 0 Downstream: 9

Downstream

DEBIAN-CVE-2022-49581 RHSA-2026:1494 RHSA-2026:1495 SUSE-SU-2025:1027-1 SUSE-SU-2025:1176-1 SUSE-SU-2025:1183-1

Analyzed

Published: 26 Feb 2025, 02:23

Last modified:11 May 2026, 19:02

Vulnerability Summary

Overall Risk (default)

medium

31/100

CVSS Score

7.8 HIGH

v3.1 (nvd)

EPSS Score

0.01% LOW

0% probability -0.02%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

26 Feb 2025, 02:23

Published

Vulnerability first disclosed

11 May 2026, 19:02

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: be2net: Fix buffer overflow in be_get_module_eeprom be_cmd_read_port_transceiver_data assumes that it is given a buffer that is at least PAGE_DATA_LEN long, or twice that if the module supports SFF 8472. However, this is not always the case. Fix this by passing the desired offset and length to be_cmd_read_port_transceiver_data so that we only copy the bytes once.

CVSS Metrics

v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 3%

Techniques & Countermeasures

CWE-787•Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

Affected Systems

linux•linux
≥ e36edd9d26cf257511548edaf2b7a56eb4fed854, < a5a8fc0679a8fd58d47aa2ebcfc5742631f753f9 | ≥ e36edd9d26cf257511548edaf2b7a56eb4fed854, < fe4473fc7940f14c4a12db873b9729134c212654 | ≥ e36edd9d26cf257511548edaf2b7a56eb4fed854, < 8ff4f9df73e5c551a72ee6034886c17e8de6596d | ≥ e36edd9d26cf257511548edaf2b7a56eb4fed854, < a8569f76df7ec5b4b51155c57523a0b356db5741 | ≥ e36edd9d26cf257511548edaf2b7a56eb4fed854, < 665cbe91de2f7c97c51ca8fce39aae26477c1948 | ≥ e36edd9d26cf257511548edaf2b7a56eb4fed854, < aba8ff847f4f927ad7a1a1ee4a9f29989a1a728f | ≥ e36edd9d26cf257511548edaf2b7a56eb4fed854, < 18043da94c023f3ef09c15017bdb04e8f695ef10 | ≥ e36edd9d26cf257511548edaf2b7a56eb4fed854, < d7241f679a59cfe27f92cb5c6272cb429fb1f7ec | 3.18
linux•linux_kernel
≥ 3.18, < 4.9.325 | ≥ 4.10, < 4.14.290 | ≥ 4.15, < 4.19.254 | ≥ 4.20, < 5.4.208 | ≥ 5.5, < 5.10.134 | ≥ 5.11, < 5.15.58 | ≥ 5.16, < 5.18.15 | 5.19:rc1 | 5.19:rc2 | 5.19:rc3 | 5.19:rc4 | 5.19:rc5 | 5.19:rc6 | 5.19:rc7