drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Denial Of Service
RCE
Linux
Suse Linux Enterprise Real Time Extension
Linux Kernel
+1
NVD
GitHub
CVSS 3.1
9.8
EPSS
2.8%