CVE-2022-43945

Name: CVE-2022-43945
Creator: NVD / NIST
Published: 2022-11-04T19:15:11.18+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.5/10EPSS 21.31%

Last modified Jun 17, 2026

CVE-2022-43945 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. EPSS estimates a 21.31% chance of exploitation in the next 30 days.

Description

The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. A client can force the send buffer to shrink by sending an RPC message over TCP with garbage data added at the end of the message. The RPC message with garbage data is still correctly formed according to the specification and is passed forward to handlers. Vulnerable code in NFSD is not expecting the oversized request and writes beyond the allocated buffer space. CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Metrics

CVSS 3.1

7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Probability

21.31%

97.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Linux	Linux Kernel	< 5.19.17
Linux	Linux Kernel	>= 6.0, < 6.0.2
Netapp	Active Iq Unified Manager	All versions
Netapp	H300s Firmware	All versions
Netapp	H500s Firmware	All versions
Netapp	H700s Firmware	All versions
Netapp	H410s Firmware	All versions
Netapp	H410c Firmware	All versions

References

http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f90497a16e434c2211c66e3de8e77b17868382b8Mailing List, Patch, Vendor Advisory
https://security.netapp.com/advisory/ntap-20221215-0006/Third Party Advisory
http://packetstormsecurity.com/files/171289/Kernel-Live-Patch-Security-Notice-LNS-0092-1.html
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f90497a16e434c2211c66e3de8e77b17868382b8Mailing List, Patch, Vendor Advisory
https://security.netapp.com/advisory/ntap-20221215-0006/Third Party Advisory
https://cert-portal.siemens.com/productcert/html/ssa-265688.html

Timeline

Published: Nov 4, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2022-43945?

How severe is CVE-2022-43945?

CVE-2022-43945 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 21.31% probability of exploitation in the next 30 days.

How do I fix CVE-2022-43945?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-43945?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST