Lucene search

GoogleOSV:CVE-2021-47522

HistoryMay 24, 2024 - 3:15 p.m.

CVE-2021-47522

2024-05-2415:15:00

Google

osv.dev

linux

kernel

hid

null pointer

vulnerability

fix

uhid

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

JSON

In the Linux kernel, the following vulnerability has been resolved: HID: bigbenff: prevent null pointer dereference When emulating the device through uhid, there is a chance we don’t have output reports and so report_field is null.

References

git.kernel.org/linus/918aa1ef104d286d16b9e7ef139a463ac7a296f0

git.kernel.org/stable/c/58f15f5ae7786c824868f3a7e093859b74669ce7

git.kernel.org/stable/c/6272b17001e6fdcf7b4a16206287010a1523fa6e

git.kernel.org/stable/c/8e0ceff632f48175ec7fb4706129c55ca8a7c7bd

git.kernel.org/stable/c/918aa1ef104d286d16b9e7ef139a463ac7a296f0

ubuntu.com/security/CVE-2021-47522

www.cve.org/CVERecord?id=CVE-2021-47522

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

JSON

Related for OSV:CVE-2021-47522