Detections
Analytics

CVE-2015-7833

medium

Description

The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 through 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux (RHEL) 7.1 allows physically proximate attackers to cause a denial of service (panic) via a nonzero bInterfaceNumber value in a USB device descriptor.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1201858

http://www.ubuntu.com/usn/USN-2967-2

http://www.ubuntu.com/usn/USN-2967-1

http://www.ubuntu.com/usn/USN-2948-2

http://www.ubuntu.com/usn/USN-2948-1

http://www.ubuntu.com/usn/USN-2947-3

http://www.ubuntu.com/usn/USN-2947-2

http://www.ubuntu.com/usn/USN-2947-1

http://www.ubuntu.com/usn/USN-2932-1

http://www.ubuntu.com/usn/USN-2929-2

http://www.ubuntu.com/usn/USN-2929-1

http://www.securitytracker.com/id/1034452

http://www.securityfocus.com/bid/77030

http://www.debian.org/security/2015/dsa-3426

http://www.debian.org/security/2015/dsa-3396

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

Details

Source: Mitre, NVD

Published: 2015-10-19

Updated: 2025-04-12

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 4.6

Vector: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00214