Vulnerability Database

313,825

Total vulnerabilities in the database

CVE-2022-23091

A particular case of memory sharing is mishandled in the virtual memory system. This is very similar to SA-21:08.vm, but with a different root cause.

An unprivileged local user process can maintain a mapping of a page after it is freed, allowing that process to read private data belonging to other processes or the kernel.

  • Published: Feb 15, 2024
  • Updated: Nov 16, 2025
  • CVE: CVE-2022-23091
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4
  • AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWEs:

Software From Fixed in
freebsd / freebsd 13.0-rc5 13.0-rc5.x
freebsd / freebsd 13.0-rc1 13.0-rc1.x
freebsd / freebsd 13.0-rc2 13.0-rc2.x
freebsd / freebsd 13.0-rc4 13.0-rc4.x
freebsd / freebsd 13.0-beta1 13.0-beta1.x
freebsd / freebsd 13.0-beta2 13.0-beta2.x
freebsd / freebsd 13.0 13.0.x
freebsd / freebsd 13.0-beta3 13.0-beta3.x
freebsd / freebsd 13.0-beta3-p1 13.0-beta3-p1.x
freebsd / freebsd 13.0-beta4 13.0-beta4.x
freebsd / freebsd 13.0-p1 13.0-p1.x
freebsd / freebsd 13.0-p2 13.0-p2.x
freebsd / freebsd 13.0-p3 13.0-p3.x
freebsd / freebsd 13.0-p4 13.0-p4.x
freebsd / freebsd 13.0-p5 13.0-p5.x
freebsd / freebsd 13.0-rc3 13.0-rc3.x
freebsd / freebsd 13.0-rc5-p1 13.0-rc5-p1.x
freebsd / freebsd 13.1-b1-p1 13.1-b1-p1.x
freebsd / freebsd - 12.3
freebsd / freebsd 12.3-beta1 12.3-beta1.x
freebsd / freebsd 12.3-p1 12.3-p1.x
freebsd / freebsd 12.3-p2 12.3-p2.x
freebsd / freebsd 12.3-p3 12.3-p3.x
freebsd / freebsd 12.3-p4 12.3-p4.x
freebsd / freebsd 12.3-p5 12.3-p5.x
freebsd / freebsd 13.0-p10 13.0-p10.x
freebsd / freebsd 13.0-p11 13.0-p11.x
freebsd / freebsd 13.0-p6 13.0-p6.x
freebsd / freebsd 13.0-p7 13.0-p7.x
freebsd / freebsd 13.0-p8 13.0-p8.x
freebsd / freebsd 13.0-p9 13.0-p9.x
freebsd / freebsd 13.1-b2-p2 13.1-b2-p2.x
freebsd / freebsd 13.1-rc1-p1 13.1-rc1-p1.x