Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.7
CVSSv3

CVE-2017-16911

Published: 31/01/2018 Updated: 24/08/2018
CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4
CVSS v3 Base Score: 4.7 | Impact Score: 3.6 | Exploitability Score: 1
VMScore: 169
Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Linux Kernel

Vulnerability Summary

The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local malicious users to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

Vendor Advisories

Debian Security Advisories: DSA-4187-1 linux -- security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2015-9016 Ming Lei reported a race condition in the multiqueue block layer (blk-mq) On a system with a driver using blk-mq (mtip32xx, null_blk, or virtio_blk), a local user might be able ...
Ubuntu Security Notice: linux-lts-xenial, linux-aws vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the Linux kernel ...
Red Hat: CVE-2017-16911
The usbip/vhci_sysfsc:port_show_vhci() in the vhci_hcd driver of the Linux kernel, before version 4148 and 44114, allows local attackers to disclose kernel memory addresses Successful exploitation requires that a USB device is attached over IP ...

References

CWE-200https://www.spinics.net/lists/linux-usb/msg163480.htmlhttps://secuniaresearch.flexerasoftware.com/secunia_research/2017-20/https://secuniaresearch.flexerasoftware.com/advisories/80454/https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/drivers/usb/usbip?id=2f2d0088eb93db5c649d2a5e34a3800a8a935fc5https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.114https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.8http://www.securityfocus.com/bid/102156https://usn.ubuntu.com/3619-1/https://usn.ubuntu.com/3619-2/https://www.debian.org/security/2018/dsa-4187https://lists.debian.org/debian-lts-announce/2018/05/msg00000.htmlhttps://usn.ubuntu.com/3754-1/https://nvd.nist.govhttps://www.debian.org/security/./dsa-4187https://usn.ubuntu.com/3619-2/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook