CVE-2015-0777
Published Apr 5, 2015
Last updated a year ago
Overview
- Description
- drivers/xen/usbback/usbback.c in linux-2.6.18-xen-3.4.0 (aka the Xen 3.4.x support patches for the Linux kernel 2.6.18), as used in the Linux kernel 2.6.x and 3.x in SUSE Linux distributions, allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory via unspecified vectors.
- Source
- security@opentext.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:xen:xen:3.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7F7D1B7E-C30F-430F-832D-2A405DA1F2D9"
},
{
"criteria": "cpe:2.3:o:xen:xen:3.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B7C1D0AD-B804-474C-96A3-988BADA0DAD2"
},
{
"criteria": "cpe:2.3:o:xen:xen:3.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1DCD1F05-9F96-40DD-B506-750E87306325"
},
{
"criteria": "cpe:2.3:o:xen:xen:3.4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25B6AE42-E1EB-47A8-8FAF-7A93A67EC67F"
},
{
"criteria": "cpe:2.3:o:xen:xen:3.4.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "60BADA43-94D5-4E80-B5C8-D01A0249F13E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:2.6.18:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C06F0037-DE20-4B4A-977F-BFCFAB026517"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]