Aff A700S
1 CVEs
product
Monthly
usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. Public exploit code available.
Use After Free
Linux
Memory Corruption
Information Disclosure
Linux Kernel
+9
NVD
GitHub
CVSS 3.1
6.7
EPSS
0.8%
EPSS 1%
CVSS 6.7
MEDIUM
POC
PATCH
This Month
usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. Public exploit code available.
Use After Free
Linux
Memory Corruption
+11
NVD
GitHub