CVE-2007-2764

EPSS 0.96%
Published 18.05.2007 22:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

The embedded Linux kernel in certain Sun-Brocade SilkWorm switches before 20070516 does not properly handle a situation in which a non-root user creates a kernel process, which allows attackers to cause a denial of service (oops and device reboot) via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 1 References 7

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version-

   Brocade ≫ Silkworm 12000 Director Version-
   Brocade ≫ Silkworm 200e Switch Version-
   Brocade ≫ Silkworm 24000 Director Version-
   Brocade ≫ Silkworm 3250 Fabric Switch Version-
   Brocade ≫ Silkworm 3850 Fabric Switch Version-
   Brocade ≫ Silkworm 3900 Switch Version-
   Brocade ≫ Silkworm 48000 Director Version-
   Brocade ≫ Silkworm 4900 Fibre Channel Switch Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.96%	0.743

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://osvdb.org/39117

Broken Link

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102752-1

Patch

Broken Link

http://www.securityfocus.com/bid/24036

Patch

Third Party Advisory

VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/34495

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2007-2764

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-2764

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-2764

EUVD