CVE-2018-20854

Опубликовано: 26 июл. 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

An issue was discovered in the Linux kernel before 4.20. drivers/phy/mscc/phy-ocelot-serdes.c has an off-by-one error with a resultant ctrl->phys out-of-bounds read.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия до 4.20 (исключая)

EPSS

Процентиль: 22%

0.00074

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

CVE-2018-20854

CVSS3: 7.8

ubuntu

больше 6 лет назад

An issue was discovered in the Linux kernel before 4.20. drivers/phy/mscc/phy-ocelot-serdes.c has an off-by-one error with a resultant ctrl->phys out-of-bounds read.

CVE-2018-20854

CVSS3: 4.7

redhat

больше 6 лет назад

An issue was discovered in the Linux kernel before 4.20. drivers/phy/mscc/phy-ocelot-serdes.c has an off-by-one error with a resultant ctrl->phys out-of-bounds read.

CVE-2018-20854

CVSS3: 7.8

debian

больше 6 лет назад

An issue was discovered in the Linux kernel before 4.20. drivers/phy/m ...

GHSA-364h-gppc-fj9q

CVSS3: 7.8

github

больше 3 лет назад

An issue was discovered in the Linux kernel before 4.20. drivers/phy/mscc/phy-ocelot-serdes.c has an off-by-one error with a resultant ctrl->phys out-of-bounds read.

EPSS

Процентиль: 22%

0.00074

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-125