CVE-2021-47210 : In the Linux kernel, the following vulnerability has been resolved: usb: typec:

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tipd: Remove WARN_ON in tps6598x_block_read Calling tps6598x_block_read with a higher than allowed len can be handled by just returning an error. There's no need to crash systems with panic-on-warn enabled.

Published 2024-04-10 19:15:48

Updated 2025-03-27 21:17:41

Source Linux

View at NVD, CVE.org

Products affected by CVE-2021-47210

Linux » Linux Kernel
Versions from including (>=) 5.11 and before (<) 5.15.5
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions before (<) 4.19.218
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 4.20 and before (<) 5.4.162
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.5 and before (<) 5.10.82
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2021-47210

EPSS FAQ

0.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 1 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-47210

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST	2025-03-27
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2021-47210

CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2021-47210

https://git.kernel.org/stable/c/30dcfcda8992dc42f18e7d35b6a1fa72372d382d

usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/b7a0a63f3fed57d413bb857de164ea9c3984bc4e

usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/eff8b7628410cb2eb562ca0d5d1f12e27063733e

usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/2a897d384513ba7f7ef05611338b9a6ec6aeac00

usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/2c71811c963b6c310a29455d521d31a7ea6c5b5e

usb: typec: tipd: Remove WARN_ON in tps6598x_block_read - kernel/git/stable/linux.git - Linux kernel stable tree
Patch

Jump to

Vulnerability Details : CVE-2021-47210

Products affected by CVE-2021-47210

Exploit prediction scoring system (EPSS) score for CVE-2021-47210

CVSS scores for CVE-2021-47210

CWE ids for CVE-2021-47210

References for CVE-2021-47210