← Back to Vulnerability Reports CVE Intelligence

CVE-2022-0492

Linux KernelHIGH · CVSS 7.8 In the wild In CISA KEV

What is CVE-2022-0492?

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.

CVSS7.8 NVD 3.1
SeverityHIGH
Exploitation In the wild In CISA KEV
EPSS34% · P97
Triage statusActive Exploit
ActionPatch immediately
CVSS vectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWECWE-287, CWE-862
NVD published2022-03-03
NVD last modified2026-06-02

CISA Known Exploited Vulnerability

Linux Kernel Improper Authentication Vulnerability

Added to KEV2026-06-02
Federal patch deadline2026-06-05
Known ransomware useUnknown

Affected product

Linux Kernel

NVD also lists CPE entries for: Netapp H300s Firmware, Netapp H300s, Netapp H410c Firmware, Netapp H410c, Netapp H410s Firmware

Remediation Steps

  1. Identify Linux systems running vulnerable kernel versions
  2. Apply the latest stable kernel update from your distribution's repository
  3. Reboot systems to activate patched kernel
  4. Verify kernel version post-reboot using 'uname -r'
  5. Prioritize kernel patching for systems exposed to untrusted local users or containers

References

Coverage on defend.network

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.

Get Critical CVE Alerts

Subscribe free and hear about actively exploited CVEs like this one first.