CVE-2017-7889 in Linux정보

요약

\~에 의해 MITRE

The mm subsystem in the Linux kernel through 4.10.10 does not properly enforce the CONFIG_STRICT_DEVMEM protection mechanism, which allows local users to read or write to kernel memory locations in the first megabyte (and bypass slab-allocation access restrictions) via an application that opens the /dev/mem file, related to arch/x86/mm/init.c and drivers/char/mem.c.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

예약하다

2017. 04. 16.

공개

2017. 04. 16.

모더레이션

수락

항목

VDB-99909

CPE

준비됨

CWE

CWE-284 (확인됨)

CVSS

7.8 (NVD)

EPSS

0.00031

KEV

아니요

활동

매우 낮음

부문

Insurance, Hospital, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-7889
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-7889
CVE Details	https://www.cvedetails.com/cve/CVE-2017-7889/

◂ 이전 개요 다음 ▸

Might our Artificial Intelligence support you?

Check our Alexa App!