CVE-2019-15098

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2019-15098
drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.

4.6 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.9 / Impact : 3.6

Attack Vector PHYSICAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

4.9 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 3.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html Mailing List Third Party Advisory
http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html Third Party Advisory VDB Entry
http://www.openwall.com/lists/oss-security/2019/09/27/1 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2019/09/27/2 Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2019/09/27/3 Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html Mailing List Third Party Advisory
https://lore.kernel.org/linux-wireless/20190804002905.11292-1-benquike%40gmail.com/T/#u
https://seclists.org/bugtraq/2019/Nov/11 Broken Link Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20190905-0002/ Third Party Advisory
https://support.f5.com/csp/article/K61214359 Third Party Advisory
https://support.f5.com/csp/article/K61214359?utm_source=f5support&amp%3Butm_medium=RSS
https://usn.ubuntu.com/4184-1/ Third Party Advisory
https://usn.ubuntu.com/4185-1/ Third Party Advisory
https://usn.ubuntu.com/4186-1/ Third Party Advisory
https://usn.ubuntu.com/4186-2/ Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:netapp:active_iq_performance_analytics_services:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
History

07 Nov 2023, 03:05

Type Values Removed Values Added
References
  • {'url': 'https://lore.kernel.org/linux-wireless/20190804002905.11292-1-benquike@gmail.com/T/#u', 'name': 'https://lore.kernel.org/linux-wireless/20190804002905.11292-1-benquike@gmail.com/T/#u', 'tags': ['Patch', 'Vendor Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://support.f5.com/csp/article/K61214359?utm_source=f5support&utm_medium=RSS', 'name': 'https://support.f5.com/csp/article/K61214359?utm_source=f5support&utm_medium=RSS', 'tags': ['Third Party Advisory'], 'refsource': 'CONFIRM'}
  • () https://support.f5.com/csp/article/K61214359?utm_source=f5support&amp%3Butm_medium=RSS -
  • () https://lore.kernel.org/linux-wireless/20190804002905.11292-1-benquike%40gmail.com/T/#u -
Information

Published : 2019-08-16 02:15

Updated : 2024-02-28 17:08

NVD link : CVE-2019-15098

Mitre link : CVE-2019-15098

CVE.ORG link : CVE-2019-15098

JSON object : View

Products Affected

linux

  • linux_kernel

netapp

  • element_software
  • active_iq_performance_analytics_services
  • data_availability_services
  • active_iq_unified_manager

debian

  • debian_linux

opensuse

  • leap

canonical

  • ubuntu_linux
CWE
CWE-476

NULL Pointer Dereference


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024