What is CVE-2022-48720?

CVE-2022-48720 is a Medium severity Linux kernel vulnerability with a CVSS score of 5.5 out of 10. CVE-2022-48720 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2022-48720?

CVE-2022-48720 has a CVSS score of 5.5 out of 10, rated Medium severity. The vector string is CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Is there a patch available for CVE-2022-48720?

No patch is currently available for CVE-2022-48720. Monitor the NIST NVD and your Linux distribution's security advisories for updates.

Is CVE-2022-48720 actively exploited?

CVE-2022-48720 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2022-48720

Medium

In the Linux kernel, the following vulnerability has been resolved: net: macsec: Fix offload support for NETDEV_UNREGISTER event Current macsec netdev notify handler handles NETDEV_UNREGISTER event by releasing relevant SW resources only, this causes resources leak in case of macsec HW offload, as the underlay driver was not notified to clean it's macsec offload resources. Fix by calling the underlay driver to clean it's relevant resources by moving offload handling from macsec_dellink() to macsec_common_dellink() when handling NETDEV_UNREGISTER event.

Package Linux Kernel

Published 2024-06-20

Last modified 2025-10-01

CVSS version 3.1

Patch available

Awaiting data

CVSS 3.1 score

5.5

out of 10

Medium

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Vector string

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References

The following references provide additional information about CVE-2022-48720 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b
Patch
Kernel patch commit
https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5
Patch
Kernel patch commit
https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a
Patch

4 patch commits total View all on NVD

Details

CVE ID CVE-2022-48720

Severity Medium

CVSS score 5.5 / 10

CVSS version 3.1

Published 2024-06-20

Modified 2025-10-01

KEV No

Patch Awaiting data

Package linux

Frequently asked questions

What is CVE-2022-48720?

CVE-2022-48720 is a Medium severity Linux kernel vulnerability with a CVSS score of 5.5 out of 10 . CVE-2022-48720 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
What is the CVSS score for CVE-2022-48720?

CVE-2022-48720 has a CVSS score of 5.5 out of 10, rated Medium severity (CVSS 3.1). The vector string is CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.
Is there a patch available for CVE-2022-48720?

No patch is currently available for CVE-2022-48720. Monitor the NIST NVD and your Linux distribution's security advisories for updates.
Is CVE-2022-48720 actively exploited?

No — CVE-2022-48720 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.