CVE-2016-7915

CVSS v3.0 5.5 (Medium)

CVSS v2.0 4.3 (Medium)

EPSS 0.12 % (47^th)

Affected Products 1

Advisories 6

The hid_input_field function in drivers/hid/hid-core.c in the Linux kernel before 4.6 allows physically proximate attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) by connecting a device, as demonstrated by a Logitech DJ receiver.

Weaknesses

CWE-125: Out-of-bounds Read

CVE Status: PUBLISHED
CNA: Android (associated with Google Inc. or Open Handset Alliance)
Published Date: 2016-11-16 05:59:09
(7 years ago)
Updated Date: 2018-01-05 02:31:15
(6 years ago)

Affected Products

Linux

Linux Kernel

Configuration #1

		CPE23	From	Up To
	Linux Kernel 4.5.7 and prior versions	cpe:2.3:o:linux:linux_kernel		<= 4.5.7