CVEPublished 2019-08-272 articles on news7 live referencesNVD data

CVE-2019-15666

Vulnerability data via CVEDB (Shodan)

CVSS v3.1
4.4
MEDIUM
EPSS percentile
75
Exploit Prediction Scoring System · top 25% of all CVEs
Description

An issue was discovered in the Linux kernel before 5.0.19. There is an out-of-bounds array access in __xfrm_policy_unlink, which will cause denial of service, because verify_newpolicy_info in net/xfrm/xfrm_user.c mishandles directory validation.

Timeline
Published 2019-08-27

External references

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

More intel sources (5)

Known PoCs on GitHub (5)