Lucene search

K
ubuntucveUbuntu.comUB:CVE-2019-19526
HistoryDec 03, 2019 - 12:00 a.m.

CVE-2019-19526

2019-12-0300:00:00
ubuntu.com
ubuntu.com
16

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

42.2%

In the Linux kernel before 5.3.9, there is a use-after-free bug that can be
caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka
CID-6af3aa57a098.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-72.81UNKNOWN
ubuntu19.04noarchlinux< 5.0.0-38.41UNKNOWN
ubuntu19.10noarchlinux< 5.3.0-24.26UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1056.58UNKNOWN
ubuntu19.04noarchlinux-aws< 5.0.0-1023.26UNKNOWN
ubuntu19.10noarchlinux-aws< 5.3.0-1008.9UNKNOWN
ubuntu18.04noarchlinux-aws-5.0< 5.0.0-1023.26~18.04.1UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1056.58~16.04.1UNKNOWN
ubuntu18.04noarchlinux-azure< 5.0.0-1028.30~18.04.1UNKNOWN
ubuntu19.04noarchlinux-azure< 5.0.0-1028.30UNKNOWN
Rows per page:
1-10 of 391

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

42.2%