Lucene search

[email protected]CVE-2019-15505

HistoryAug 23, 2019 - 6:15 a.m.

CVE-2019-15505

2019-08-2306:15:00

CWE-125

[email protected]

web.nvd.nist.gov

336

cve-2019-15505

linux kernel

out-of-bounds read

usb

security vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.3%

JSON

drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir).

CPENameOperatorVersion
linux:linux_kernellinux linux kernellt5.3.1
linux:linux_kernellinux linux kernellt5.2.17
linux:linux_kernellinux linux kernellt3.16.77
linux:linux_kernellinux linux kernellt4.4.194
linux:linux_kernellinux linux kernellt4.9.194
linux:linux_kernellinux linux kernellt4.14.146
linux:linux_kernellinux linux kernellt4.19.75
debian:debian_linuxdebian debian linuxeq8.0
canonical:ubuntu_linuxcanonical ubuntu linuxeq18.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq19.04

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	lt	5.3.1
linux:linux_kernel	linux linux kernel	lt	5.2.17
linux:linux_kernel	linux linux kernel	lt	3.16.77
linux:linux_kernel	linux linux kernel	lt	4.4.194
linux:linux_kernel	linux linux kernel	lt	4.9.194
linux:linux_kernel	linux linux kernel	lt	4.14.146
linux:linux_kernel	linux linux kernel	lt	4.19.75
debian:debian_linux	debian debian linux	eq	8.0
canonical:ubuntu_linux	canonical ubuntu linux	eq	18.04
canonical:ubuntu_linux	canonical ubuntu linux	eq	19.04