ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·8/21/2024
CVE-2022-0185 added to CISA KEV: Linux Kernel
Status: ✅ Confirmed exploited in the wild
Date added: 2024-08-21
Required action: Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.
Due date: 2024-09-11
Why this matters
Linux kernel contains a heap-based buffer overflow vulnerability in the legacy_parse_param function in the Filesystem Context functionality. This allows an attacker to open a filesystem that does not support the Filesystem Context API and ultimately escalate privileges.
Sources
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.