CVE-2022-50413

HIGH

Linux Kernel < 6.0.3 - Use After Free

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix use-after-free We've already freed the assoc_data at this point, so need to use another copy of the AP (MLD) address instead.

References (2)

[Patch] https://git.kernel.org/stable/c/40fb87129049ec5876dabf4a4d4aed6642b31f1a

[Patch] https://git.kernel.org/stable/c/aebef10affe16228462af680b88751bf137e2856

Scores

CVSS v3 7.8

EPSS 0.0002

EPSS Percentile 4.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-416

Status published

Affected Products (2)

linux/linux_kernel < 6.0.3

linux/Kernel < 6.0.3linux

Timeline

Published Sep 18, 2025

Tracked Since Feb 18, 2026