Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-0571

Опубликовано: 09 мая 2016
Источник: nvd
CVSS3: 7.8
CVSS2: 9.3
EPSS Низкий

Описание

The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify authorization for private SET IOCTL calls, which allows attackers to gain privileges via a crafted application, related to wlan_hdd_hostapd.c and wlan_hdd_wext.c.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 4.0.0 (включая) до 4.20.15 (включая)
Конфигурация 2
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия от 3.0.0 (включая) до 3.18.66 (включая)

EPSS

Процентиль: 28%
0.001
Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-862

Связанные уязвимости

ubuntu логотип

CVE-2015-0571

CVSS3: 7.8
ubuntu
больше 9 лет назад

The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify authorization for private SET IOCTL calls, which allows attackers to gain privileges via a crafted application, related to wlan_hdd_hostapd.c and wlan_hdd_wext.c.

github логотип

GHSA-frf2-9xr3-8pcj

CVSS3: 7.8
github
больше 3 лет назад

The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify authorization for private SET IOCTL calls, which allows attackers to gain privileges via a crafted application, related to wlan_hdd_hostapd.c and wlan_hdd_wext.c.

EPSS

Процентиль: 28%
0.001
Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-862