CVE-2019-5016

🗓️ 17 Jun 2019 20:29:55Reported by talosType

An exploitable arbitrary memory read vulnerability in the KCodes NetUSB.ko kernel module enables ReadySHARE Printer functionality in at least two NETGEAR Nighthawk Routers, leading to denial of service or remote information disclosure

Reporter	Title	Published	Views	Family All 9
Cvelist	CVE-2019-5016	17 Jun 201920:29	–	cvelist
EUVD	EUVD-2019-14623	7 Oct 202500:30	–	euvd
NVD	CVE-2019-5016	17 Jun 201921:15	–	nvd
OSV	CVE-2019-5016	17 Jun 201921:15	–	osv
Prion	Memory corruption	17 Jun 201921:15	–	prion
Talos	KCodes NetUSB unauthenticated remote kernel arbitrary memory read vulnerability	14 Jun 201900:00	–	talos
Talos Blog	Vulnerability Spotlight: Two bugs in KCodes NetUSB affect some NETGEAR routers	17 Jun 201910:17	–	talosblog
Talos Blog	The many vulnerabilities Talos discovered in SOHO and industrial wireless routers post-VPNFilter	2 Aug 202312:00	–	talosblog
The Hacker News	New KCodes NetUSB Bug Affect Millions of Routers from Different Vendors	11 Jan 202211:59	–	thn

NVD

Vulners

Node

netgear r8000_firmwareMatch1.0.4.28_10.1.54

AND

netgear r8000Match-

Node

netgear r7900_firmwareMatch1.0.3.810.037

AND

netgear r7900Match-

Node

kcodes netusb.koMatch1.0.2.66

kcodes netusb.koMatch1.0.2.69

[
  {
    "product": "KCodes",
    "vendor": "Talos",
    "versions": [
      {
        "status": "affected",
        "version": "NETGEAR Nighthawk AC3200 (R8000) Firmware Version V1.0.4.2810.1.54 (11/7/18) - NetUSB.ko 1.0.2.66"
      },
      {
        "status": "affected",
        "version": "NETGEAR Nighthawk AC3000 (R7900) Firmware Version V1.0.3.810.0.37 (11/1/18) - NetUSB.ko 1.0.2.69"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/108820
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2019-0775

21 Nov 2024 04:44Current

8.6High risk

Vulners AI Score8.6

CVSS 26.4

CVSS 3.19.1

CVSS 310

EPSS0.02422

CWE-200