Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).
CVE-2016-4578 — Sensitive Information Exposure in Kernel
Severity
5.5MEDIUMNVD
OSV6.2
EPSS
0.2%
top 61.31%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
Timeline
PublishedMay 23
Latest updateMay 14
Description
sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions.
CVSS vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6
Affected Packages8 packages
Also affects: Debian Linux 8.0, Ubuntu Linux 12.04, 14.04, 15.10, 16.04, Enterprise Linux 7.3, 7.4, 7.6, 7.5
🔴Vulnerability Details
11💥Exploits & PoCs
1Exploit-DB
▶
📋Vendor Advisories
14Android▶
CVE-2016-4578: Android Security Bulletin 2016-08-01
CVE: CVE-2016-4578
Severity: MEDIUM
References: A-28980217
Upstream kernel
[2]↗2016-08-01