Linux Kernel SMSC75XX USB Driver Memory Leak Vulnerability

Vulnerability

A vulnerability in the Linux kernel's SMSC75XX USB driver can lead to a memory leak. The issue arises because the driver does not properly limit packet lengths, allowing data packets to be up to 9026 bytes. This can result in the transmission of cloned socket buffers that leak kernel memory contents.

Impact

Exploitation of this vulnerability causes a memory leak, where kernel memory is unintentionally exposed or accessible, potentially leading to further exploitation or information disclosure.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel SMSC75XX USB Driver Memory Leak Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating