Buffer overflow in the auerswald_probe function in the Auerswald Linux USB driver for the Linux kernel before 2.6.27 allows physically proximate attackers to execute arbitrary code, cause a denial of service via a crafted USB device, or take full control of the system.
CVSS Details
- CVSS 3.1 Base Score: 6.8
- CVSS 3.1 Vector: (CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
Covered by Rapid7
| Product | Vendor Advisory | Solution File | Added | Published |
|---|---|---|---|---|
| Oracle_linux | — | oracle-linux-upgrade-kernel | Oct 16, 2024 | Feb 11, 2020 |
| Redhat_linux | — | no-fix-redhat-rpm-package | Jul 9, 2025 | Feb 11, 2020 |
| Ubuntu | ubuntu-upgrade-linux-image-2-6-24-29-386ubuntu-upgrade-linux-image-2-6-24-29-genericubuntu-upgrade-linux-image-2-6-24-29-hppa32ubuntu-upgrade-linux-image-2-6-24-29-hppa64ubuntu-upgrade-linux-image-2-6-24-29-itaniumubuntu-upgrade-linux-image-2-6-24-29-lpiaubuntu-upgrade-linux-image-2-6-24-29-lpiacompatubuntu-upgrade-linux-image-2-6-24-29-mckinleyubuntu-upgrade-linux-image-2-6-24-29-openvzubuntu-upgrade-linux-image-2-6-24-29-powerpcubuntu-upgrade-linux-image-2-6-24-29-powerpc-smpubuntu-upgrade-linux-image-2-6-24-29-powerpc64-smpubuntu-upgrade-linux-image-2-6-24-29-rtubuntu-upgrade-linux-image-2-6-24-29-serverubuntu-upgrade-linux-image-2-6-24-29-sparc64ubuntu-upgrade-linux-image-2-6-24-29-sparc64-smpubuntu-upgrade-linux-image-2-6-24-29-virtualubuntu-upgrade-linux-image-2-6-24-29-xen | Nov 8, 2024 | Feb 11, 2020 |
Prioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub