CVE-2021-47206

Advisory lineage Upstream: 0 Downstream: 13
Analyzed
Published: 10 Apr 2024, 18:56
Last modified:11 May 2026, 13:50

Vulnerability Summary

Overall Risk (default)
low
22/100
CVSS Score
5.5 MEDIUM
v3.1 (nvd)
EPSS Score
0.01% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

10 Apr 2024, 18:56
Published
Vulnerability first disclosed
11 May 2026, 13:50
Last Modified
Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-tmio: check return value after calling platform_get_resource() It will cause null-ptr-deref if platform_get_resource() returns NULL, we need check the return value.

CVSS Metrics

  • v3.1MEDIUMScore: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01% Percentile: 3%

Techniques & Countermeasures

  • CWE-476NULL Pointer Dereference

    The product dereferences a pointer that it expects to be valid but is NULL.

Affected Systems

  • linuxlinux

    ≥ 78c73414f4f6744e2ea5a07b263a9698aa6f2416, < 28e016e02118917e50a667bc72fb80098cf2b460 | ≥ 78c73414f4f6744e2ea5a07b263a9698aa6f2416, < 2f18f97a1a787154a372c0738f1576f14b693d91 | ≥ 78c73414f4f6744e2ea5a07b263a9698aa6f2416, < bb6ed2e05eb6e8619b30fa854f9becd50c11723f | ≥ 78c73414f4f6744e2ea5a07b263a9698aa6f2416, < 951b8239fd24678b56c995c5c0456ab12e059d19 | ≥ 78c73414f4f6744e2ea5a07b263a9698aa6f2416, < f98986b7acb4219f95789095eced93ed69d81d35 | ≥ 78c73414f4f6744e2ea5a07b263a9698aa6f2416, < 2474eb7fc3bfbce10f7b8ea431fcffe5dd5f5100 | ≥ 78c73414f4f6744e2ea5a07b263a9698aa6f2416, < 065334f6640d074a1caec2f8b0091467a22f9483 | ≥ 78c73414f4f6744e2ea5a07b263a9698aa6f2416, < 9eff2b2e59fda25051ab36cd1cb5014661df657b | 2.6.28

  • linuxlinux_kernel

    < 4.4.293 | ≥ 4.5, < 4.9.291 | ≥ 4.10, < 4.14.256 | ≥ 4.15, < 4.19.218 | ≥ 4.20, < 5.4.162 | ≥ 5.5, < 5.10.82 | ≥ 5.11, < 5.15.5

References (8)