// For flags

CVE-2019-20636

kernel: out-of-bounds write via crafted keycode table

Severity Score

6.7
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

In the Linux kernel before 5.4.12, drivers/input/input.c has out-of-bounds writes via a crafted keycode table, as demonstrated by input_set_keycode, aka CID-cb222aed03d7.

En el kernel de Linux versiones anteriores a 5.4.12, el archivo drivers/input/input.c presenta escrituras fuera de límites por medio de una tabla de códigos clave diseñada, como es demostrado en la función input_set_keycode, también se conoce como CID-cb222aed03d7.

An out-of-bounds write flaw was found in the Linux kernel. A crafted keycode table could be used by drivers/input/input.c to perform the out-of-bounds write. A local user with root access can insert garbage to this keycode table that can lead to out-of-bounds memory access. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2020-04-08 CVE Reserved
  • 2020-04-08 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-787: Out-of-bounds Write
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Linux
Search vendor "Linux"
Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
< 3.16.83
Search vendor "Linux" for product "Linux Kernel" and version " < 3.16.83"
-
Affected
Linux
Search vendor "Linux"
Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
>= 3.17 < 4.4.210
Search vendor "Linux" for product "Linux Kernel" and version " >= 3.17 < 4.4.210"
-
Affected
Linux
Search vendor "Linux"
Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
>= 4.5 < 4.9.210
Search vendor "Linux" for product "Linux Kernel" and version " >= 4.5 < 4.9.210"
-
Affected
Linux
Search vendor "Linux"
Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
>= 4.10 < 4.14.165
Search vendor "Linux" for product "Linux Kernel" and version " >= 4.10 < 4.14.165"
-
Affected
Linux
Search vendor "Linux"
Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
>= 4.15 < 4.19.96
Search vendor "Linux" for product "Linux Kernel" and version " >= 4.15 < 4.19.96"
-
Affected
Linux
Search vendor "Linux"
Linux Kernel
Search vendor "Linux" for product "Linux Kernel"
>= 4.20 < 5.4.12
Search vendor "Linux" for product "Linux Kernel" and version " >= 4.20 < 5.4.12"
-
Affected
Netapp
Search vendor "Netapp"
Cloud Backup
Search vendor "Netapp" for product "Cloud Backup"
--
Affected
Netapp
Search vendor "Netapp"
Solidfire
Search vendor "Netapp" for product "Solidfire"
--
Affected
Netapp
Search vendor "Netapp"
Steelstore Cloud Integrated Storage
Search vendor "Netapp" for product "Steelstore Cloud Integrated Storage"
--
Affected
Netapp
Search vendor "Netapp"
Fas 8300
Search vendor "Netapp" for product "Fas 8300"
--
Affected
Netapp
Search vendor "Netapp"
Fas 8700
Search vendor "Netapp" for product "Fas 8700"
--
Affected
Netapp
Search vendor "Netapp"
Fas A400
Search vendor "Netapp" for product "Fas A400"
--
Affected
Netapp
Search vendor "Netapp"
Fas Baseboard Management Controller A220
Search vendor "Netapp" for product "Fas Baseboard Management Controller A220"
--
Affected
Netapp
Search vendor "Netapp"
Fas Baseboard Management Controller A320
Search vendor "Netapp" for product "Fas Baseboard Management Controller A320"
--
Affected
Netapp
Search vendor "Netapp"
Fas Baseboard Management Controller A800
Search vendor "Netapp" for product "Fas Baseboard Management Controller A800"
--
Affected
Netapp
Search vendor "Netapp"
Fas Baseboard Management Controller C190
Search vendor "Netapp" for product "Fas Baseboard Management Controller C190"
--
Affected
Netapp
Search vendor "Netapp"
H300s
Search vendor "Netapp" for product "H300s"
--
Affected
Netapp
Search vendor "Netapp"
H410s
Search vendor "Netapp" for product "H410s"
--
Affected
Netapp
Search vendor "Netapp"
H500s
Search vendor "Netapp" for product "H500s"
--
Affected
Netapp
Search vendor "Netapp"
H610c
Search vendor "Netapp" for product "H610c"
--
Affected
Netapp
Search vendor "Netapp"
H610s
Search vendor "Netapp" for product "H610s"
--
Affected
Netapp
Search vendor "Netapp"
H615c
Search vendor "Netapp" for product "H615c"
--
Affected
Netapp
Search vendor "Netapp"
H700s
Search vendor "Netapp" for product "H700s"
--
Affected