← ExploitWatch
HomeExploited Vulnerabilities

CVE-2013-6282 — Actively Exploited: Kernel (Linux)

The get_user and put_user API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. This allows an application to read and write kernel memory which could lead to privilege escalation.

CVE IDCVE-2013-6282
VendorLinux
ProductKernel
Vulnerability nameLinux Kernel Improper Input Validation Vulnerability
Date added2022-09-15
Remediation due2022-10-06
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionThe get_user and put_user API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. This allows an application to read and write kernel memory which could lead to privilege escalation.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →