CVE-2015-2666
CVSS v2.0
6.9 (Medium)
EPSS
0.07 % (31th)
Affected Products
2
Advisories
19
Stack-based buffer overflow in the get_matching_model_microcode function in arch/x86/kernel/cpu/microcode/intel_early.c in the Linux kernel before 4.0 allows context-dependent attackers to gain privileges by constructing a crafted microcode header and leveraging root privileges for write access to the initrd.
Weaknesses
- CWE-119
- Improper Restriction of Operations within the Bounds of a Memory Buffer
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2015-05-27 10:59:04
(9 years ago) - Updated Date
-
2024-03-14 19:59:23
(6 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...