CVE-2013-6282 — Actively Exploited: Kernel (Linux)
The get_user and put_user API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. This allows an application to read and write kernel memory which could lead to privilege escalation.
| CVE ID | CVE-2013-6282 |
|---|---|
| Vendor | Linux |
| Product | Kernel |
| Vulnerability name | Linux Kernel Improper Input Validation Vulnerability |
| Date added | 2022-09-15 |
| Remediation due | 2022-10-06 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | The get_user and put_user API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. This allows an application to read and write kernel memory which could lead to privilege escalation. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →