Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2022-48836
HistoryJul 16, 2024 - 1:15 p.m.

CVE-2022-48836

2024-07-1613:15:11
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
4
linux kernel
vulnerability
cve-2022-48836
aiptek
usb
security fix
endpoint type check
syzbot reported
warning
usb_submit_urb()
usb type 3

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

Input: aiptek - properly check endpoint type

Syzbot reported warning in usb_submit_urb() which is caused by wrong
endpoint type. There was a check for the number of endpoints, but not
for the type of endpoint.

Fix it by replacing old desc.bNumEndpoints check with
usb_find_common_endpoints() helper for finding endpoints

Fail log:

usb 5-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 2 PID: 48 at drivers/usb/core/urb.c:502 usb_submit_urb+0xed2/0x18a0 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 2 PID: 48 Comm: kworker/2:2 Not tainted 5.17.0-rc6-syzkaller-00226-g07ebd38a0da2 #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
Workqueue: usb_hub_wq hub_event

Call Trace:
<TASK>
aiptek_open+0xd5/0x130 drivers/input/tablet/aiptek.c:830
input_open_device+0x1bb/0x320 drivers/input/input.c:629
kbd_connect+0xfe/0x160 drivers/tty/vt/keyboard.c:1593

Affected configurations

Nvd
Node
linuxlinux_kernelRange4.44.9.308
OR
linuxlinux_kernelRange4.104.14.273
OR
linuxlinux_kernelRange4.154.19.236
OR
linuxlinux_kernelRange4.205.4.187
OR
linuxlinux_kernelRange5.55.10.108
OR
linuxlinux_kernelRange5.115.15.31
OR
linuxlinux_kernelRange5.165.16.17
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Related

cvelist 1
osv 11
redhatcve 1
cve 1
debiancve 1
ubuntucve 1
vulnrichment 1
nessus 10
openvas 4
cvelist
cvelist
CVE-2022-48836 Input: aiptek - properly check endpoint type
2024-07-16 12:25:08
osv
osv
CVE-2022-48836
2024-07-16 13:15:11
Security update for the Linux Kernel
2024-09-12 12:12:38
Security update for the Linux Kernel
2024-09-16 08:56:37
redhatcve
redhatcve
CVE-2022-48836
2024-07-16 20:56:53
cve
cve
CVE-2022-48836
2024-07-16 13:15:11
debiancve
debiancve
CVE-2022-48836
2024-07-16 13:15:11
ubuntucve
ubuntucve
CVE-2022-48836
2024-07-16 00:00:00
vulnrichment
vulnrichment
CVE-2022-48836 Input: aiptek - properly check endpoint type
2024-07-16 12:25:08
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:3249-1)
2024-09-17 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:2892-1)
2024-08-14 00:00:00
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:2940-1)
2024-08-17 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2441)
2024-09-12 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2901-1)
2024-08-15 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2394)
2024-09-12 00:00:00

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

JSON
Related for NVD:CVE-2022-48836
cvelist1osv11redhatcve1cve1debiancve1ubuntucve1vulnrichment1nessus10openvas4