CVE-2022-48837
usb: gadget: rndis: prevent integer overflow in rndis_set_response()
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: rndis: prevent integer overflow in rndis_set_response()
If "BufOffset" is very large the "BufOffset + 8" operation can have an
integer overflow.
En el kernel de Linux se ha resuelto la siguiente vulnerabilidad: usb: gadget:rndis: previene el desbordamiento de enteros en rndis_set_response() Si "BufOffset" es muy grande la operaciĆ³n "BufOffset + 8" puede tener un desbordamiento de enteros.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-07-16 CVE Reserved
- 2024-07-16 CVE Published
- 2024-07-19 EPSS Updated
- 2024-11-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-190: Integer Overflow or Wraparound
CAPEC
References (15)
| URL | Tag | Source |
|---|---|---|
| https://git.kernel.org/stable/c/ff0a90739925734c91c7e39befe3f4378e0c1369 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/4c22fbcef778badb00fb8bb9f409daa29811c175 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/db9aaa3026298d652e98f777bc0f5756e2455dda | Vuln. Introduced | |
| https://git.kernel.org/stable/c/c9e952871ae47af784b4aef0a77db02e557074d6 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/fb4ff0f96de37c44236598e8b53fe43b1df36bf3 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/2da3b0ab54fb7f4d7c5a82757246d0ee33a47197 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/2724ebafda0a8df08a9cb91557d33226bee80f7b | Vuln. Introduced |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 4.9.302 < 4.9.308 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.9.302 < 4.9.308" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 4.14.267 < 4.14.273 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14.267 < 4.14.273" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 4.19.230 < 4.19.236 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.230 < 4.19.236" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.4.180 < 5.4.187 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.180 < 5.4.187" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.10.101 < 5.10.108 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.101 < 5.10.108" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.15.24 < 5.15.31 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.24 < 5.15.31" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.16.10 < 5.16.17 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16.10 < 5.16.17" | en |
Affected
| ||||||