CVE-2013-2851
CVSS v2.0
6 (Medium)
EPSS
0.07 % (30th)
Affected Products
1
Advisories
36
Format string vulnerability in the register_disk function in block/genhd.c in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and writing format string specifiers to /sys/module/md_mod/parameters/new_array in order to create a crafted /dev/md device name.
Weaknesses
- CWE-134
- Use of Externally-Controlled Format String
- CVE Status
- PUBLISHED
- CNA
- Chrome
- Published Date
-
2013-06-07 14:03:20
(11 years ago) - Updated Date
-
2023-11-07 02:15:14
(10 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...