CYBERSIXT Signal Over Noise
securityonline.info 6/3/2026, 3:11:29 AM · external

CISA adds Linux kernel CVE-2022-0492 and Android flaw to KEV list

CISA adds Linux kernel CVE-2022-0492 and Android flaw to KEV list
Incident Open incident page

Drupal SQL Injection Exploit: Critical Flaw Exploited in the Wild with Public PoC

The page reports on two critical vulnerabilities actively exploited today: CVE-2022-0492, related to improper authentication in the Linux Kernel, and CVE-2025-48595, an integer overflow vulnerability in the Android Framework. Access to the detailed vulnerability report requires support from the reader, encouraging contributions via platforms like PayPal and…

First seen 2026-06-02T02:32:14.106Z · Last seen 2026-06-03T08:32:53.347Z

CVE-2025-48595 CVE-2026-0059 CVE-2022-0492
CyberSIXT Evidence Panel
Primary Source cisa.gov
CVE Intel
CVE-2022-0492 - NVD CISA KEV due 2026-06-05 7.8 HIGH
CVE-2025-48595 - NVD CISA KEV due 2026-06-05 8.4 HIGH
CISA KEV Listed in KEV
Patch Patch Available

THE Cybersecurity and Infrastructure Security Agency (CISA) has added two new actively exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. These include:

1. **CVE-2022-0492**: An improper authentication vulnerability in the Linux Kernel allowing local attackers to elevate privileges and bypass container namespace isolation, with a CVSS score of 7.8.

2. **CVE-2025-48595**: An integer overflow vulnerability in the Android Framework allowing unauthorized execution of code with elevated privileges, affecting Android 14 and later.

CISA mandates that federal agencies remediate these vulnerabilities by June 5, 2026, warning that unpatched systems could face severe operational disruptions.

View Primary Source Via securityonline.info

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline