Lucene search

[email protected]NVD:CVE-2024-25741

HistoryFeb 12, 2024 - 3:15 a.m.

CVE-2024-25741

2024-02-1203:15:32

[email protected]

web.nvd.nist.gov

cve-2024-25741

usb driver

denial of service

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

High

EPSS

Percentile

9.0%

JSON

printer_write in drivers/usb/gadget/function/f_printer.c in the Linux kernel through 6.7.4 does not properly call usb_ep_queue, which might allow attackers to cause a denial of service or have unspecified other impact.

Affected configurations

Nvd

Node

linuxlinux_kernelRange≤6.7.4

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::

References

www.spinics.net/lists/linux-usb/msg252167.html

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2024-25741

vulnrichment1 prion1 ubuntucve1 cvelist1 debiancve1 cve1 redhatcve1 osv11 openvas6 nessus11