CVE-2013-2094

Name: CVE-2013-2094
Creator: NVD / NIST
Published: 2013-05-14T20:55:01.527+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.4/10Actively ExploitedEPSS 47.71%

Last modified Jun 16, 2026

CVE-2013-2094 is a high-severity vulnerability rated 8.4/10 on the CVSS scale. The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perf_event_open system call.. CISA has confirmed active exploitation in the wild. EPSS estimates a 47.71% chance of exploitation in the next 30 days.

Description

The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perf_event_open system call.

Metrics

CVSS 3.1

8.4/10

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

47.71%

98.7th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by Oct 6, 2022.

Weakness Enumeration

CWE-189

Affected Software

Vendor	Product	Versions
Linux	Linux Kernel	< 3.0.75
Linux	Linux Kernel	>= 3.1, < 3.2.45
Linux	Linux Kernel	>= 3.3, < 3.4.42
Linux	Linux Kernel	>= 3.5, < 3.8.9

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8176cced706b5e5d15887584150764894e94e02fNot Applicable
http://lists.centos.org/pipermail/centos-announce/2013-May/019729.htmlThird Party Advisory, VDB Entry
http://lists.centos.org/pipermail/centos-announce/2013-May/019733.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00008.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00009.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00017.htmlThird Party Advisory, VDB Entry
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/03652.htmlThird Party Advisory, VDB Entry
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/03976.htmlThird Party Advisory, VDB Entry
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/04302.htmlThird Party Advisory
http://news.ycombinator.com/item?id=5703758Third Party Advisory
http://packetstormsecurity.com/files/121616/semtex.cExploit, Third Party Advisory, VDB Entry
http://rhn.redhat.com/errata/RHSA-2013-0830.htmlThird Party Advisory
http://twitter.com/djrbliss/statuses/334301992648331267Patch
http://www.exploit-db.com/exploits/33589Third Party Advisory, VDB Entry
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9Not Applicable
http://www.mandriva.com/security/advisories?name=MDVSA-2013:176Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2013/05/14/6Mailing List, Third Party Advisory
http://www.osvdb.org/93361Broken Link
http://www.reddit.com/r/netsec/comments/1eb9iwThird Party Advisory
http://www.ubuntu.com/usn/USN-1825-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1826-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1827-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1828-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1836-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1838-1Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=962792Issue Tracking
https://github.com/torvalds/linux/commit/8176cced706b5e5d15887584150764894e94e02fThird Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8176cced706b5e5d15887584150764894e94e02fNot Applicable
http://lists.centos.org/pipermail/centos-announce/2013-May/019729.htmlThird Party Advisory, VDB Entry
http://lists.centos.org/pipermail/centos-announce/2013-May/019733.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00008.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00009.htmlThird Party Advisory, VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00017.htmlThird Party Advisory, VDB Entry
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/03652.htmlThird Party Advisory, VDB Entry
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/03976.htmlThird Party Advisory, VDB Entry
http://lkml.indiana.edu/hypermail/linux/kernel/1304.1/04302.htmlThird Party Advisory
http://news.ycombinator.com/item?id=5703758Third Party Advisory
http://packetstormsecurity.com/files/121616/semtex.cExploit, Third Party Advisory, VDB Entry
http://rhn.redhat.com/errata/RHSA-2013-0830.htmlThird Party Advisory
http://twitter.com/djrbliss/statuses/334301992648331267Patch
http://www.exploit-db.com/exploits/33589Third Party Advisory, VDB Entry
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9Not Applicable
http://www.mandriva.com/security/advisories?name=MDVSA-2013:176Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2013/05/14/6Mailing List, Third Party Advisory
http://www.osvdb.org/93361Broken Link
http://www.reddit.com/r/netsec/comments/1eb9iwThird Party Advisory
http://www.ubuntu.com/usn/USN-1825-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1826-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1827-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1828-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1836-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1838-1Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=962792Issue Tracking
https://github.com/torvalds/linux/commit/8176cced706b5e5d15887584150764894e94e02fThird Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-2094US Government Resource

Timeline

Published: May 14, 2013
Last Modified: Jun 16, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2013-2094?

How severe is CVE-2013-2094?

CVE-2013-2094 has a CVSS score of 8.4/10 (HIGH severity). The EPSS model estimates a 47.71% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.

How do I fix CVE-2013-2094?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2013-2094?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST