Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2021-47522

HistoryMay 24, 2024 - 3:15 p.m.

CVE-2021-47522

2024-05-2415:15:14

CWE-476

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

hid

bigbenff

emulation

uhid

output reports

report_field

vulnerability

cve-2021-47522

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

HID: bigbenff: prevent null pointer dereference

When emulating the device through uhid, there is a chance we don’t have
output reports and so report_field is null.

Affected configurations

Nvd

Node

linuxlinux_kernelRange<5.4.165

linuxlinux_kernelRange5.5–5.10.85

linuxlinux_kernelRange5.11–5.15.8

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::

References

git.kernel.org/stable/c/58f15f5ae7786c824868f3a7e093859b74669ce7

git.kernel.org/stable/c/6272b17001e6fdcf7b4a16206287010a1523fa6e

git.kernel.org/stable/c/8e0ceff632f48175ec7fb4706129c55ca8a7c7bd

git.kernel.org/stable/c/918aa1ef104d286d16b9e7ef139a463ac7a296f0

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2021-47522