Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

None

Privileges Required

None

Attack Vector

Physical

0

CVE-2015-8816

Disclosure Date: April 27, 2016 •

CVE-2015-8816 CVSS v3 Base Score: 6.8

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system crash) or possibly have unspecified other impact by unplugging a USB hub device.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

6.8 Medium

Impact Score:

5.9

Exploitability Score:

0.9

Vector:

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV):

Physical

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

Vendors

linux,
novell,
suse

Products

linux enterprise live patching 12,
linux enterprise server 12,
linux kernel,
suse linux enterprise debuginfo 11,
suse linux enterprise desktop 12.0,
suse linux enterprise live patching 12.0,
suse linux enterprise module for public cloud 12,
suse linux enterprise real time extension 11,
suse linux enterprise real time extension 12,
suse linux enterprise server 11,
suse linux enterprise server 12.0,
suse linux enterprise software development kit 11.0,
suse linux enterprise software development kit 12.0,
suse linux enterprise workstation extension 12.0

References

Canonical

CVE-2015-8816 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8816)

BID-83363 (http://www.securityfocus.com/bid/83363)

Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00054.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00022.html

https://github.com/torvalds/linux/commit/e50293ef9775c5f1cf3fcc093037dd6a8c5684ea

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00015.html

DSA-3503 (http://www.debian.org/security/2016/dsa-3503)

http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.3.5

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00026.html

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

https://bugzilla.redhat.com/show_bug.cgi?id=1311589

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00052.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00019.html

http://source.android.com/security/bulletin/2016-07-01.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html

[oss-security] 20160223 CVE Request: Linux kernel USB hub invalid memory access in hub_activate() (http://www.openwall.com/lists/oss-security/2016/02/23/5)

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html

http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit?id=e50293ef9775c5f1cf3fcc093037dd6a8c5684ea

Rapid7

Technical Analysis