CVE-2022-50327

Advisory lineage Upstream: 0 Downstream: 39
Analyzed
Published: 15 Sept 2025, 14:49
Last modified:11 May 2026, 19:17

Vulnerability Summary

Overall Risk (default)
low
22/100
CVSS Score
5.5 MEDIUM
v3.1 (nvd)
EPSS Score
0.03% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

15 Sept 2025, 14:49
Published
Vulnerability first disclosed
11 May 2026, 19:17
Last Modified
Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check acpi_fetch_acpi_dev() return value The return value of acpi_fetch_acpi_dev() could be NULL, which would cause a NULL pointer dereference to occur in acpi_device_hid(). [ rjw: Subject and changelog edits, added empty line after if () ]

CVSS Metrics

  • v3.1MEDIUMScore: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.03% Percentile: 10%

Techniques & Countermeasures

  • CWE-476NULL Pointer Dereference

    The product dereferences a pointer that it expects to be valid but is NULL.

Affected Systems

  • debiandebian_linux

    11.0

  • linuxlinux

    ≥ a36a7fecfe6071732075ad5aa31196adce13181b, < 8e8b5f12ee4ab6f5d252c9ca062a4ada9554e6d9 | ≥ a36a7fecfe6071732075ad5aa31196adce13181b, < fdee7a0acc566c4194d40a501b8a1584e86cc208 | ≥ a36a7fecfe6071732075ad5aa31196adce13181b, < ad1190744da9d812da55b76f2afce750afb0a3bd | ≥ a36a7fecfe6071732075ad5aa31196adce13181b, < 2ecd629c788bbfb96be058edade2e934d3763eaf | ≥ a36a7fecfe6071732075ad5aa31196adce13181b, < b85f0e292f73f353eea915499604fbf50c8238b4 | ≥ a36a7fecfe6071732075ad5aa31196adce13181b, < 2437513a814b3e93bd02879740a8a06e52e2cf7d | 4.8

  • linuxlinux_kernel

    ≥ 4.8, < 5.4.297 | ≥ 5.5, < 5.10.241 | ≥ 5.11, < 5.15.190 | ≥ 5.16, < 6.0.16 | ≥ 6.1, < 6.1.2

References (7)