CVE-2020-13143
CVSS v3.1
6.5 (Medium)
CVSS v2.0
4.3 (Medium)
EPSS
0.65 % (80th)
Affected Products
38
Advisories
24
gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup without considering the possibility of an internal '\0' value, which allows attackers to trigger an out-of-bounds read, aka CID-15753588bcd4.
Weaknesses
- CWE-125
- Out-of-bounds Read
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2020-05-18 18:15:11
(4 years ago) - Updated Date
-
2022-10-29 02:36:25
(22 months ago)
Affected Products
- Active Iq Unified Manager
- Cloud Backup
- Element Software
- Hci Management Node
- Solidfire
- Steelstore Cloud Integrated Storage
- A700s
- H300e
- H300s
- H410c
- H410s
- H500e
- H500s
- H610c
- H610s
- H615c
- H700e
- H700s
- Hci Compute Node
- Solidfire Baseboard Management Controller
- A700s Firmware
- Bootstrap Os
- H300e Firmware
- H300s Firmware
- H410c Firmware
- H410s Firmware
- H500e Firmware
- H500s Firmware
- H610c Firmware
- H610s Firmware
- H615c Firmware
- H700e Firmware
- H700s Firmware
- Solidfire Baseboard Management Controller Firmware
Loading...
Loading...
Loading...
Configuration #1
AND |
|
---|
Configuration #2
AND |
|
---|
Configuration #3
AND |
|
---|
Configuration #4
AND |
|
---|
Configuration #5
AND |
|
---|
Configuration #6
AND |
|
---|
Configuration #7
AND |
|
---|
Configuration #8
AND |
|
---|
Configuration #9
AND |
|
---|
Configuration #10
AND |
|
---|
Configuration #11
AND |
|
---|
Configuration #12
AND |
|
---|
Configuration #13
AND |
|
---|
Configuration #14
AND |
|
---|
Configuration #15
AND |
|
---|
Configuration #16
AND |
|
---|
Configuration #17
AND |
|
---|
Configuration #18
AND |
|
---|
Configuration #19
AND |
|
---|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...