Vulnerabilities > CVE-2020-15437 - NULL Pointer Dereference vulnerability in Linux Kernel

047910
CVSS 4.4 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
linux
CWE-476
NVD
Published: 2020-11-23
Updated: 2024-11-21

Summary

The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized.

Vulnerable Configurations

Part Description Count
OS
Linux
4564

Common Weakness Enumeration (CWE)

References