THE US cybersecurity agency CISA has issued a warning regarding the exploitation of a Linux kernel vulnerability (CVE-2022-0492) which allows privilege escalation and container escapes. This vulnerability, with a CVSS score of 7.8, affects cgroups v1 of the Linux kernel's control groups feature, crucial for restricting resource access in containers. Attackers exploit this flaw by modifying the release_agent file, enabling the execution of malicious scripts as root.
CISA added this CVE to its Known Exploited Vulnerabilities catalog and urged federal agencies to implement patches by June 5. Additionally, CISA recommended patching another high-severity Android Framework vulnerability, CVE-2025-48595, which has been exploited as a zero-day.