5.5
CVE-2024-35945
- EPSS 0.21%
- Veröffentlicht 19.05.2024 11:15:50
- Zuletzt bearbeitet 31.01.2025 15:01:01
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
net: phy: phy_device: Prevent nullptr exceptions on ISR
In the Linux kernel, the following vulnerability has been resolved: net: phy: phy_device: Prevent nullptr exceptions on ISR If phydev->irq is set unconditionally, check for valid interrupt handler or fall back to polling mode to prevent nullptr exceptions in interrupt service routine.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 6.6.27
Linux ≫ Linux Kernel Version >= 6.7 < 6.8.6
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.21% | 0.113 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
https://git.kernel.org/stable/c/3419ee39e3d3162ab2ec9942bb537613ed5b6311
https://git.kernel.org/stable/c/61c81872815f46006982bb80460c0c80a949b35b
https://git.kernel.org/stable/c/7a71f61ebf95cedd3f245db6da397822971d8db5