Lucene search

K

PRIOn knowledge basePRION:CVE-2019-17053

HistoryOct 01, 2019 - 2:15 p.m.

Code injection

2019-10-0114:15:00

PRIOn knowledge base

www.prio-n.com

9

5.4 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

18.2%

ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7.

CPENameOperatorVersion
linux_kernelle5.3.2

References

packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html

git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0edc3f703f7bcaf550774b5d43ab727bcd0fe06b

git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e69dbd4619e7674c1679cba49afd9dd9ac347eef

lists.debian.org/debian-lts-announce/2020/01/msg00013.html

lists.debian.org/debian-lts-announce/2020/03/msg00001.html

lists.fedoraproject.org/archives/list/[email protected]/message/U6JNEWGIK7QA24OIUUL67QZNJN52NB7T/

seclists.org/bugtraq/2019/Nov/11

usn.ubuntu.com/4184-1/

usn.ubuntu.com/4185-1/

usn.ubuntu.com/4185-2/

usn.ubuntu.com/4186-1/

usn.ubuntu.com/4186-2/

5.4 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

18.2%

Related for PRION:CVE-2019-17053

cvelist1 f51 debiancve1 cve1 ubuntucve1 redhatcve1 nvd1 symantec1 fedora15 openvas32 nessus38 oraclelinux6 ubuntu8 cloudfoundry2 photon5 slackware1 ibm3 redhat4 osv2 debian2 centos1