CVE-2020-12653

CVSS v3.1 7.8 (High)

CVSS v2.0 4.6 (Medium)

EPSS 0.04 % (5^th)

Affected Products 35

Advisories 28

An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in drivers/net/wireless/marvell/mwifiex/scan.c allows local users to gain privileges or cause a denial of service because of an incorrect memcpy and buffer overflow, aka CID-b70261a288ea.

Weaknesses

CWE-787: Out-of-bounds Write

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2020-05-05 06:15:11
(4 years ago)
Updated Date: 2022-04-26 17:37:33
(2 years ago)

Affected Products

Debian

Debian Linux

Linux

Linux Kernel

Netapp

Opensuse

Leap

Configuration #1

AND

		CPE23	From	Up To
OR
	Linux Kernel prior 5.5.4 version	cpe:2.3:o:linux:linux_kernel		< 5.5.4

Configuration #2

AND

		CPE23	From	Up To
OR
	Opensuse Leap 15.1	cpe:2.3:o:opensuse:leap:15.1

Configuration #3

AND

		CPE23
OR
	Debian Linux 8.0	cpe:2.3:o:debian:debian_linux:8.0
OR
	Running on/with
	Debian Linux 9.0	cpe:2.3:o:debian:debian_linux:9.0

Configuration #4

AND

		CPE23
OR
	Netapp Active Iq Unified Manager for Vmware Vsphere	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere
OR
	Running on/with
	Netapp Cloud Backup	cpe:2.3:a:netapp:cloud_backup:-
OR
	Running on/with
	Netapp Element Software	cpe:2.3:a:netapp:element_software:-
OR
	Running on/with
	Netapp Hci Management Node	cpe:2.3:a:netapp:hci_management_node:-
OR
	Running on/with
	Netapp Solidfire	cpe:2.3:a:netapp:solidfire:-
OR
	Running on/with
	Netapp Steelstore Cloud Integrated Storage	cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-

Configuration #5

AND

		CPE23
OR
	Netapp Hci Compute Node Firmware	cpe:2.3:o:netapp:hci_compute_node_firmware:-
OR
	Running on/with
	Netapp Hci Compute Node	cpe:2.3:h:netapp:hci_compute_node:-

Configuration #6

AND

		CPE23
OR
	Netapp A700s Firmware	cpe:2.3:o:netapp:a700s_firmware:-
OR
	Running on/with
	Netapp A700s	cpe:2.3:h:netapp:a700s:-

Configuration #7

AND

		CPE23
OR
	Netapp H300s Firmware	cpe:2.3:o:netapp:h300s_firmware:-
OR
	Running on/with
	Netapp H300s	cpe:2.3:h:netapp:h300s:-

Configuration #8

AND

		CPE23
OR
	Netapp H500s Firmware	cpe:2.3:o:netapp:h500s_firmware:-
OR
	Running on/with
	Netapp H500s	cpe:2.3:h:netapp:h500s:-

Configuration #9

AND

		CPE23
OR
	Netapp H700s Firmware	cpe:2.3:o:netapp:h700s_firmware:-
OR
	Running on/with
	Netapp H700s	cpe:2.3:h:netapp:h700s:-

Configuration #10

AND

		CPE23
OR
	Netapp H300e Firmware	cpe:2.3:o:netapp:h300e_firmware:-
OR
	Running on/with
	Netapp H300e	cpe:2.3:h:netapp:h300e:-

Configuration #11

AND

		CPE23
OR
	Netapp H500e Firmware	cpe:2.3:o:netapp:h500e_firmware:-
OR
	Running on/with
	Netapp H500e	cpe:2.3:h:netapp:h500e:-

Configuration #12

AND

		CPE23
OR
	Netapp H700e Firmware	cpe:2.3:o:netapp:h700e_firmware:-
OR
	Running on/with
	Netapp H700e	cpe:2.3:h:netapp:h700e:-

Configuration #13

AND

		CPE23
OR
	Netapp H410s Firmware	cpe:2.3:o:netapp:h410s_firmware:-
OR
	Running on/with
	Netapp H410s	cpe:2.3:h:netapp:h410s:-

Configuration #14

AND

		CPE23
OR
	Netapp H410c Firmware	cpe:2.3:o:netapp:h410c_firmware:-
OR
	Running on/with
	Netapp H410c	cpe:2.3:h:netapp:h410c:-

Configuration #15

AND

		CPE23
OR
	Netapp H610c Firmware	cpe:2.3:o:netapp:h610c_firmware:-
OR
	Running on/with
	Netapp H610c	cpe:2.3:h:netapp:h610c:-

Configuration #16

AND

		CPE23
OR
	Netapp H610s Firmware	cpe:2.3:o:netapp:h610s_firmware:-
OR
	Running on/with
	Netapp H610s	cpe:2.3:h:netapp:h610s:-

Configuration #17

AND

		CPE23
OR
	Netapp H615c Firmware	cpe:2.3:o:netapp:h615c_firmware:-
OR
	Running on/with
	Netapp H615c	cpe:2.3:h:netapp:h615c:-