Published: 08/08/2021 Updated: 04/01/2022

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.8 | Impact Score: 5.9 | Exploitability Score: 0.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

drivers/usb/host/max3421-hcd.c in the Linux kernel prior to 5.13.6 allows physically proximate malicious users to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
debian debian linux 9.0

Several security issues were fixed in the Linux kernel ...

A flaw was found in the Linux kernel When reusing a socket with an attached dccps_hc_tx_ccid as a listener, the socket will be used after being released leading to denial of service (DoS) or a potential code execution The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability (CVE-2020-1611 ...

drivers/usb/host/max3421-hcdc in the Linux kernel before 5136 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations ...

Critical Infrastructure Sectors: Critical Manufacturing

CWE-416 https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.13.6 https://github.com/torvalds/linux/commit/b5fdf5c6e6bee35837e160c00ac89327bdad031b https://lists.debian.org/debian-lts-announce/2021/12/msg00012.html https://nvd.nist.gov https://ubuntu.com/security/notices/USN-5343-1 https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-07

CVE-2021-38204

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

ICS Advisories

References

Vulmon Search

About

Products

Connect