CVE-2022-49324

low-risk

Published 2025-02-26

In the Linux kernel, the following vulnerability has been resolved: mips: cpc: Fix refcount leak in mips_cpc_default_phys_base Add the missing of_node_put() to release the refcount incremented by of_find_compatible_node().

Do I need to act?

0.04% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (8)

Patch https://git.kernel.org/stable/c/1699ec1bfb59304a788901474f6bb003f7831b61

Patch https://git.kernel.org/stable/c/4107fa700f314592850e2c64608f6ede4c077476

Patch https://git.kernel.org/stable/c/8f843cdfc202caaa5d67db3395d893e56362e43a

Patch https://git.kernel.org/stable/c/961ee8a6eeef4632a215d995d837b204f8c7c2d4

Patch https://git.kernel.org/stable/c/aae6b4bb63c694bc91714412718f15468407fe51

Patch https://git.kernel.org/stable/c/bed702566dcdb6ebe300bc0c62bf3600cf4d5874

Patch https://git.kernel.org/stable/c/c667b3872a4c435a3f29d4e15971cd8c378b0043

Patch https://git.kernel.org/stable/c/cc0aed22d33ced9e266c50bdf1cbe668c5acfdf8

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal