5.9
CVSSv3

CVE-2017-16913

Published: 31/01/2018 Updated: 24/08/2018
CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 632
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Vulnerability Summary

The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows malicious users to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP packet.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

Vendor Advisories

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2015-9016 Ming Lei reported a race condition in the multiqueue block layer (blk-mq) On a system with a driver using blk-mq (mtip32xx, null_blk, or virtio_blk), a local user might be able ...
Several security issues were fixed in the Linux kernel ...
Several security issues were fixed in the Linux kernel ...
Improper input validation in drivers/usb/usbip/stub_rxc:stub_recv_cmd_submit() in the Linux kernel, when handling CMD_SUBMIT packets, allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP packet ...