What is CVE-2022-41674?

A high-severity buffer overflow vulnerability in the Linux kernel affects multiple distributions. Organizations must address this issue promptly to mitigate risks of buffer overflow attacks.

What is the severity of CVE-2022-41674?

CVE-2022-41674 has a severity rating of HIGH with a CVSS base score of 8.1.

CVE-2022-41674 | High Vulnerability in Linux Kernel

CVE-2022-41674 is a high-severity vulnerability identified in the Linux kernel versions prior to 5.19.16. The issue arises from a buffer overflow in the ieee80211_bss_info_update function, which can be exploited by attackers able to inject WLAN frames. Given the widespread use of the Linux kernel in various systems and applications, this vulnerability poses a significant risk to organizations that rely on affected versions.

The vulnerability has a CVSS score of 8.1, indicating a high level of severity. With an attack vector classified as adjacent network and low attack complexity, the potential for exploitation remains a pressing concern. Attackers may leverage this vulnerability to execute arbitrary code or cause denial of service, impacting system confidentiality and availability.

Given the critical nature of this vulnerability, organizations should prioritize patching immediately. The Linux kernel is integral to many operating systems, and failure to address this vulnerability could lead to severe security breaches.

Organizations that utilize distributions based on the Linux kernel, including Debian and Fedora, must take urgent action to apply available patches to mitigate the risks associated with CVE-2022-41674.

Vulnerability Details

An issue was discovered in the Linux kernel before version 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c. This vulnerability is classified under CWE-787, indicating improper control of a resource through its lifetime.

The CVSS vector for this vulnerability is CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H, resulting in a base score of 8.1. This scoring reflects high confidentiality and availability impacts while indicating no integrity impact.

The affected products include various distributions of the Linux kernel, specifically Debian and Fedora, with vulnerabilities found in multiple versions.

Technical Analysis

The root cause of CVE-2022-41674 is a buffer overflow vulnerability that occurs when WLAN frames are injected. This flaw allows for potential exploitation via the ieee80211_bss_info_update function, which processes network information.

The attack vector is classified as adjacent network, which means an attacker must be on the same network as the victim. The attack complexity is rated as low, suggesting that successful exploitation does not require any specialized conditions or privileged access.

Privileges required for exploitation are none, and user interaction is not necessary. Should an attack succeed, the implications could lead to high confidentiality impact and high availability impact, with integrity impact remaining unaffected.

Risk & Impact Analysis

The risk to organizations includes potential unauthorized access, data breaches, and service interruptions resulting from successful exploitation of this vulnerability. Given the CVSS score of 8.1, organizations must view this threat seriously.

The blast radius of this vulnerability is considerable, particularly for organizations using impacted Linux distributions. This means that a successful exploit could allow attackers to compromise multiple systems within the network.

Organizations should address this vulnerability in their priority patch cycle, implementing necessary updates to mitigate risks effectively.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

Affected versions include all Linux kernel versions prior to 5.19.16, as well as specific versions of Debian and Fedora, including Debian 10.0 and 11.0, and Fedora 35, 36, and 37.

Mitigation & Remediation

To remediate CVE-2022-41674, organizations should apply the latest patches provided by their respective Linux distributions. Specifically, organizations should upgrade to the patched versions of the Linux kernel as specified in their advisories.

For guidance on implementing effective security measures, organizations can refer to resources on penetration testing and configuration hardening.

Detection Guidance

Organizations should monitor logs for unusual WLAN frame activity and any anomalies in network traffic that could indicate an attempt to exploit this vulnerability.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2022-41674 lies in its demonstration of how vulnerabilities in widely-used systems like the Linux kernel can have extensive impacts across various sectors.

This vulnerability highlights the importance of regular updates and security assessments as part of a proactive security posture.

Security teams should take note of the patterns this vulnerability represents and consider adopting a vulnerability management program to ensure similar weaknesses are identified early.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2022-41674: High Vulnerability in Linux Kernel