CVE-2010-4565 : The bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementatio

The bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel 2.6.36 and earlier creates a publicly accessible file with a filename containing a kernel memory address, which allows local users to obtain potentially sensitive information about kernel memory use by listing this filename.

Published 2010-12-29 18:00:03

Updated 2020-08-10 19:56:45

Source MITRE

View at NVD, CVE.org

Vulnerability category: Information leak

Threat overview for CVE-2010-4565

Top countries where our scanners detected CVE-2010-4565

Top open port discovered on systems with this issue 49153

IPs affected by CVE-2010-4565 22,672

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2010-4565!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2010-4565

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2010-4565

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2010-4565

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2010-4565

http://www.spinics.net/lists/netdev/msg145791.html

[SECURITY] CAN info leak/minor heap overflow — Netdev
Exploit;Mailing List;Third Party Advisory

CVEs referencing this url
http://openwall.com/lists/oss-security/2010/11/04/4

oss-security - Re: CVE request: kernel: CAN information leak
Mailing List;Third Party Advisory

CVEs referencing this url
http://openwall.com/lists/oss-security/2010/12/21/1

oss-security - Re: CVE request: kernel: CAN information leak, 2nd attempt
Mailing List;Third Party Advisory

CVEs referencing this url
https://bugzilla.redhat.com/show_bug.cgi?id=664544

664544 – (CVE-2010-4565) CVE-2010-4565 kernel: CAN info leak
Issue Tracking;Third Party Advisory
http://openwall.com/lists/oss-security/2010/11/03/3

oss-security - CVE request: kernel: CAN information leak
Mailing List;Third Party Advisory

CVEs referencing this url
http://openwall.com/lists/oss-security/2010/12/20/2

oss-security - CVE request: kernel: CAN information leak, 2nd attempt
Mailing List;Third Party Advisory

CVEs referencing this url
http://www.spinics.net/lists/netdev/msg146270.html

Re: [PATCH] Fix CAN info leak/minor heap overflow — Netdev
Mailing List;Patch;Third Party Advisory
http://www.spinics.net/lists/netdev/msg146468.html

Re: [PATCH] Fix CAN info leak/minor heap overflow — Netdev
Mailing List;Third Party Advisory
http://www.spinics.net/lists/netdev/msg145796.html

Re: [SECURITY] CAN info leak/minor heap overflow — Netdev
Mailing List;Third Party Advisory
http://www.securityfocus.com/bid/44661

Linux Kernel CAN Protocol Information Disclosure Vulnerability
Third Party Advisory;VDB Entry
http://www.mandriva.com/security/advisories?name=MDVSA-2011:029

mandriva.com
Third Party Advisory

CVEs referencing this url

Products affected by CVE-2010-4565