Primary

Context

Linux Kernel Sierra USB Net Driver Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's Sierra USB net driver has been addressed. The issue arose because the driver failed to verify that the third endpoint was an interrupt input, despite correctly checking for the presence of three endpoints and ensuring that the bulk in and out endpoints were available. This oversight has been corrected.

Impact

The vulnerability could lead to improper handling of USB endpoints, potentially causing issues in data transmission or device communication.

Added: Jul 28, 2025, 1:11 PM

Updated: Jul 28, 2025, 1:11 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Sierra USB Net Driver Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating