7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
30.1%
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernelβs KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer βstruct kvm_coalesced_mmioβ object, wherein write indices βring->firstβ and βring->lastβ value could be supplied by a host user-space process. An unprivileged host user or process with access to β/dev/kvmβ device could use this flaw to crash the host kernel, resulting in a denial of service or potentially escalating privileges on the system.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | linux | <Β 5.2.17-1 | linux_5.2.17-1_all.deb |
Debian | 11 | all | linux | <Β 5.2.17-1 | linux_5.2.17-1_all.deb |
Debian | 999 | all | linux | <Β 5.2.17-1 | linux_5.2.17-1_all.deb |
Debian | 13 | all | linux | <Β 5.2.17-1 | linux_5.2.17-1_all.deb |
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
30.1%