CVE-2017-14489

CVSS v3.0 5.5 (Medium)

CVSS v2.0 4.9 (Medium)

EPSS 0.04 % (14^th)

Affected Products 1

Advisories 14

The iscsi_if_rx function in drivers/scsi/scsi_transport_iscsi.c in the Linux kernel through 4.13.2 allows local users to cause a denial of service (panic) by leveraging incorrect length validation.

Weaknesses

CWE-20: Improper Input Validation

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2017-09-15 10:29:00
(7 years ago)
Updated Date: 2018-03-16 01:29:05
(6 years ago)

Affected Products

Linux

Linux Kernel

Configuration #1

		CPE23	From	Up To
	Linux Kernel 4.13.2 and prior versions	cpe:2.3:o:linux:linux_kernel		<= 4.13.2