Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2016-4486
HistoryMay 23, 2016 - 10:59 a.m.

CVE-2016-4486

2016-05-2310:59:00
CWE-200
[email protected]
web.nvd.nist.gov
94
4
cve-2016-4486
linux kernel
rtnl_fill_link_ifmap
netlink
information security
vulnerability

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

5.4 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

9.7%

JSON

The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.

CPENameOperatorVersion
novell:suse_linux_enterprise_module_for_public_cloudnovell suse linux enterprise module for public cloudeq12.0
novell:suse_linux_enterprise_servernovell suse linux enterprise servereq11.0
novell:suse_linux_enterprise_servernovell suse linux enterprise servereq12.0
novell:suse_linux_enterprise_live_patchingnovell suse linux enterprise live patchingeq12.0
novell:suse_linux_enterprise_desktopnovell suse linux enterprise desktopeq12.0
novell:suse_linux_enterprise_real_time_extensionnovell suse linux enterprise real time extensioneq12.0
novell:suse_linux_enterprise_workstation_extensionnovell suse linux enterprise workstation extensioneq12.0
novell:suse_linux_enterprise_debuginfonovell suse linux enterprise debuginfoeq11.0
novell:suse_linux_enterprise_software_development_kitnovell suse linux enterprise software development kiteq11.0
novell:suse_linux_enterprise_software_development_kitnovell suse linux enterprise software development kiteq12.0
Rows per page:
1-10 of 151

References

Social References

More

Related

redhatcve 1
prion 1
ubuntucve 1
zdt 1
debiancve 1
exploitpack 1
packetstorm 1
f5 1
exploitdb 1
openvas 25
fedora 3
nessus 31
amazon 1
ubuntu 12
cloudfoundry 1
suse 13
debian 3
osv 2
androidsecurity 1
redhatcve
redhatcve
CVE-2016-4486
2016-05-05 09:48:18
prion
prion
Design/Logic Flaw
2016-05-23 10:59:00
ubuntucve
ubuntucve
CVE-2016-4486
2016-05-23 00:00:00
zdt
zdt
Linux Kernel 4.4 - rtnetlink Stack Memory Disclosure Exploit
2018-12-19 00:00:00
debiancve
debiancve
CVE-2016-4486
2016-05-23 10:59:00
exploitpack
exploitpack
Linux Kernel 4.4 - rtnetlink Stack Memory Disclosure
2018-12-19 00:00:00
packetstorm
packetstorm
Linux Kernel 4.4 rtnetlink Stack Memory Disclosure
2018-12-19 00:00:00
f5
f5
K85332020 : Netlink message vulnerability CVE-2016-4486
2016-06-29 00:00:00
exploitdb
exploitdb
Linux Kernel 4.4 - 'rtnetlink' Stack Memory Disclosure
2018-12-19 00:00:00
openvas
openvas
Fedora Update for kernel FEDORA-2016-a159c484e4
2016-06-08 00:00:00
Fedora Update for kernel FEDORA-2016-ef973efab7
2016-06-08 00:00:00
Amazon Linux: Security Advisory (ALAS-2016-703)
2016-10-26 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: kernel-4.4.9-200.fc22
2016-05-16 14:56:10
[SECURITY] Fedora 24 Update: kernel-4.5.4-300.fc24
2016-05-14 23:33:19
[SECURITY] Fedora 23 Update: kernel-4.5.5-201.fc23
2016-06-02 15:04:03
nessus
nessus
Fedora 22 : kernel (2016-a159c484e4)
2016-07-14 00:00:00
Fedora 24 : kernel (2016-ef973efab7)
2016-07-14 00:00:00
Amazon Linux AMI : kernel (ALAS-2016-703)
2016-05-19 00:00:00
amazon
amazon
Medium: kernel
2016-05-18 14:00:00
ubuntu
ubuntu
Linux kernel (Xenial HWE) vulnerabilities
2016-06-10 00:00:00
Linux kernel vulnerabilities
2016-06-01 00:00:00
Linux kernel (Raspberry Pi 2) vulnerabilities
2016-06-10 00:00:00
cloudfoundry
cloudfoundry
USN-3001-1 Linux kernel (Vivid HWE) vulnerabilities | Cloud Foundry
2016-06-15 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2016-06-28 16:08:01
Security update for the Linux Kernel (important)
2016-09-12 14:11:24
Security update for the Linux Kernel (important)
2016-06-21 14:08:17
debian
debian
[SECURITY] [DLA 516-1] linux security update
2016-06-17 12:12:11
[SECURITY] [DSA 3607-1] linux security update
2016-06-28 09:56:48
[SECURITY] [DSA 3607-1] linux security update
2016-06-28 09:56:48
osv
osv
linux - security update
2016-06-17 00:00:00
linux - security update
2016-06-28 00:00:00
androidsecurity
androidsecurity
Android Security Bulletinβ€”August 2016
2016-08-01 00:00:00

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

5.4 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

9.7%

JSON
Related for CVE-2016-4486
redhatcve1prion1ubuntucve1zdt1debiancve1exploitpack1packetstorm1f51exploitdb1openvas25fedora3nessus31amazon1ubuntu12cloudfoundry1suse13debian3osv2androidsecurity1