Lucene search

MitreCVE-2019-15217

HistoryAug 19, 2019 - 10:15 p.m.

CVE-2019-15217

2019-08-1922:15:11

CWE-476

mitre

web.nvd.nist.gov

334

cve-2019-15217

linux kernel

null pointer dereference

usb device

nvd

security issue

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

4.6

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.1

Confidence

Low

EPSS

0.001

Percentile

50.0%

JSON

An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver.

Affected configurations

Nvd

Node

linuxlinux_kernelRange<5.2.3

Node

netapph410c_firmwareMatch-

AND

netapph410cMatch-

Node

netappactive_iq_unified_managerMatch-vmware_vsphere

netappdata_availability_servicesMatch-

netappsolidfire_\&_hci_management_nodeMatch-

netappsolidfire_baseboard_management_controllerMatch-

Node

canonicalubuntu_linuxMatch14.04esm

canonicalubuntu_linuxMatch16.04esm

canonicalubuntu_linuxMatch18.04lts

canonicalubuntu_linuxMatch19.04

Node

debiandebian_linuxMatch8.0

Node

opensuseleapMatch15.0

opensuseleapMatch15.1

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
netapph410c_firmware-cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*
netapph410c-cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*
netappactive_iq_unified_manager-cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
netappdata_availability_services-cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:*
netappsolidfire_\&_hci_management_node-cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:*:*:*:*:*:*:*
netappsolidfire_baseboard_management_controller-cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:*:*:*:*:*:*:*
canonicalubuntu_linux14.04cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
canonicalubuntu_linux16.04cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
canonicalubuntu_linux18.04cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
netapp	h410c_firmware	-	cpe:2.3:o:netapp:h410c_firmware:-:::::::*
netapp	h410c	-	cpe:2.3:h:netapp:h410c:-:::::::*
netapp	active_iq_unified_manager	-	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere::
netapp	data_availability_services	-	cpe:2.3:a:netapp:data_availability_services:-:::::::*
netapp	solidfire_\&_hci_management_node	-	cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:::::::*
netapp	solidfire_baseboard_management_controller	-	cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:::::::*
canonical	ubuntu_linux	14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
canonical	ubuntu_linux	16.04	cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
canonical	ubuntu_linux	18.04	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::