Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2019-15291
HistoryAug 20, 2019 - 12:00 a.m.

CVE-2019-15291

2019-08-2000:00:00
ubuntu.com
ubuntu.com
27

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

50.0%

JSON

An issue was discovered in the Linux kernel through 5.2.9. There is a NULL
pointer dereference caused by a malicious USB device in the
flexcop_usb_probe function in the drivers/media/usb/b2c2/flexcop-usb.c
driver.

Notes

Author Note
tyhicks Setting priority to negligible since this simple DoS requires a malicious USB device to be inserted into the system As of 2019-08-26, there’s no upstream fix.
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-88.88UNKNOWN
ubuntu19.10noarchlinux< 5.3.0-40.32UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-173.203UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1060.62UNKNOWN
ubuntu19.10noarchlinux-aws< 5.3.0-1011.12UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1061.65UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1101.112UNKNOWN
ubuntu18.04noarchlinux-aws-5.0< 5.0.0-1024.27~18.04.1UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1060.62~16.04.1UNKNOWN
ubuntu18.04noarchlinux-azure< 5.0.0-1029.31~18.04.1UNKNOWN
Rows per page:
1-10 of 401

Related

prion 1
oraclelinux 4
nessus 29
debiancve 1
redhatcve 1
cve 1
nvd 1
cvelist 1
photon 4
openvas 25
suse 2
ibm 2
ubuntu 6
slackware 1
cloudfoundry 1
debian 2
osv 2
prion
prion
Null pointer dereference
2019-08-20 14:15:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2020-03-09 00:00:00
Unbreakable Enterprise kernel security update
2020-03-05 00:00:00
Unbreakable Enterprise kernel security update
2020-02-22 00:00:00
nessus
nessus
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2020-5559)
2020-03-09 00:00:00
Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2020-5560)
2020-03-09 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2020-5541)
2020-02-25 00:00:00
debiancve
debiancve
CVE-2019-15291
2019-08-20 14:15:11
redhatcve
redhatcve
CVE-2019-15291
2019-09-07 01:52:03
cve
cve
CVE-2019-15291
2019-08-20 14:15:11
nvd
nvd
CVE-2019-15291
2019-08-20 14:15:11
cvelist
cvelist
CVE-2019-15291
2019-08-20 13:23:32
photon
photon
Moderate Photon OS Security Update - PHSA-2020-0266
2020-01-21 00:00:00
Important Photon OS Security Update - PHSA-2019-0194
2019-12-14 00:00:00
Important Photon OS Security Update - PHSA-2019-0046
2019-12-16 00:00:00
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (openSUSE-SU-2019:2308-1)
2020-01-09 00:00:00
openSUSE: Security Advisory for the Linux Kernel (openSUSE-SU-2019:2307-1)
2019-10-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2706-1)
2021-06-09 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2019-10-10 00:00:00
Security update for the Linux Kernel (important)
2019-10-10 00:00:00
ibm
ibm
Security Bulletin: Publicly disclosed vulnerabilities from Kernel affect IBM Netezza Host Management
2020-10-28 13:21:38
Security Bulletin: Multiple vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus
2020-04-01 00:35:26
ubuntu
ubuntu
Linux kernel (Xenial HWE) vulnerabilities
2020-01-29 00:00:00
Linux kernel vulnerabilities
2020-01-28 00:00:00
Linux kernel vulnerabilities
2020-01-29 00:00:00
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2020-01-08 22:45:25
cloudfoundry
cloudfoundry
USN-4287-1: Linux kernel vulnerabilities | Cloud Foundry
2020-03-10 00:00:00
debian
debian
[SECURITY] [DLA 2068-1] linux security update
2020-01-18 04:38:12
[SECURITY] [DLA 2114-1] linux-4.9 security update
2020-03-02 18:14:56
osv
osv
linux - security update
2020-01-17 00:00:00
linux-4.9 - security update
2020-02-21 00:00:00

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

50.0%

JSON
Related for UB:CVE-2019-15291
prion1oraclelinux4nessus29debiancve1redhatcve1cve1nvd1cvelist1photon4openvas25suse2ibm2ubuntu6slackware1cloudfoundry1debian2osv2