[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-52477":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":72,"related":73,"reserved_at":9,"published_at":85,"modified_at":86,"state":87,"summary":88,"references_raw":97,"kevs":132,"epss":133,"epss_history":136,"metrics":355,"affected":361},"CVE-2023-52477","In the Linux kernel, the following vulnerability has been resolved:\n\nusb: hub: Guard against accesses to uninitialized BOS descriptors\n\nMany functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h\naccess fields inside udev->bos without checking if it was allocated and\ninitialized. If usb_get_bos_descriptor() fails for whatever\nreason, udev->bos will be NULL and those accesses will result in a\ncrash:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000018\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 5 PID: 17818 Comm: kworker/5:1 Tainted: G W 5.15.108-18910-gab0e1cb584e1 #1 \u003CHASH:1f9e 1>\nHardware name: Google Kindred/Kindred, BIOS Google_Kindred.12672.413.0 02/03/2021\nWorkqueue: usb_hub_wq hub_event\nRIP: 0010:hub_port_reset+0x193/0x788\nCode: 89 f7 e8 20 f7 15 00 48 8b 43 08 80 b8 96 03 00 00 03 75 36 0f b7 88 92 03 00 00 81 f9 10 03 00 00 72 27 48 8b 80 a8 03 00 00 \u003C48> 83 78 18 00 74 19 48 89 df 48 8b 75 b0 ba 02 00 00 00 4c 89 e9\nRSP: 0018:ffffab740c53fcf8 EFLAGS: 00010246\nRAX: 0000000000000000 RBX: ffffa1bc5f678000 RCX: 0000000000000310\nRDX: fffffffffffffdff RSI: 0000000000000286 RDI: ffffa1be9655b840\nRBP: ffffab740c53fd70 R08: 00001b7d5edaa20c R09: ffffffffb005e060\nR10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000\nR13: ffffab740c53fd3e R14: 0000000000000032 R15: 0000000000000000\nFS: 0000000000000000(0000) GS:ffffa1be96540000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000018 CR3: 000000022e80c005 CR4: 00000000003706e0\nCall Trace:\nhub_event+0x73f/0x156e\n? hub_activate+0x5b7/0x68f\nprocess_one_work+0x1a2/0x487\nworker_thread+0x11a/0x288\nkthread+0x13a/0x152\n? process_one_work+0x487/0x487\n? kthread_associate_blkcg+0x70/0x70\nret_from_fork+0x1f/0x30\n\nFall back to a default behavior if the BOS descriptor isn't accessible\nand skip all the functionalities that depend on it: LPM support checks,\nSuper Speed capabilitiy checks, U1/U2 states setup.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-476","NULL Pointer Dereference","The product dereferences a pointer that it expects to be valid but is NULL.","weakness","Stable","Base","Medium",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70],{"_key":25},"SUSE-SU-2024:1321-1",{"_key":27},"SUSE-SU-2024:1454-1",{"_key":29},"SUSE-SU-2024:1465-1",{"_key":31},"SUSE-SU-2024:1489-1",{"_key":33},"SUSE-SU-2024:1643-1",{"_key":35},"SUSE-SU-2024:1646-1",{"_key":37},"SUSE-SU-2024:1870-1",{"_key":39},"SUSE-SU-2024:1320-1",{"_key":41},"SUSE-SU-2024:1466-1",{"_key":43},"SUSE-SU-2024:1480-1",{"_key":45},"SUSE-SU-2024:1490-1",{"_key":47},"DEBIAN-CVE-2023-52477",{"_key":49},"RHSA-2025:10701",{"_key":51},"RHSA-2024:3618",{"_key":53},"RHSA-2024:3627",{"_key":55},"RHSA-2024:9315",{"_key":57},"UBUNTU-CVE-2023-52477",{"_key":59},"USN-7727-1",{"_key":61},"USN-7727-2",{"_key":63},"USN-7727-3",{"_key":65},"USN-7755-1",{"_key":67},"USN-7755-2",{"_key":69},"USN-7755-3",{"_key":71},"USN-7875-1",[],[74,75,76,77,78,79,80,81,82,83,84],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},"2024-02-29T05:43:10.088Z","2026-05-11T19:28:05.297Z","Analyzed",{"cisa_kev":89,"cisa_ransomware":89,"cisa_vendor":9,"epss_severity":90,"epss_score":91,"severity":92,"severity_score":93,"severity_version":94,"severity_source":95,"severity_vector":96,"severity_status":87},false,"low",0.00008,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[98,104,108,112,116,120,124,128],{"url":99,"sources":100,"tags":102},"https://git.kernel.org/stable/c/c64e4dca9aefd232b17ac4c779b608b286654e81",[101,95],"cve.org",[103],"Patch",{"url":105,"sources":106,"tags":107},"https://git.kernel.org/stable/c/8e7346bfea56453e31b7421c1c17ca2fb9ed613d",[101,95],[103],{"url":109,"sources":110,"tags":111},"https://git.kernel.org/stable/c/6ad3e9fd3632106696692232bf7ff88b9f7e1bc3",[101,95],[103],{"url":113,"sources":114,"tags":115},"https://git.kernel.org/stable/c/241f230324337ed5eae3846a554fb6d15169872c",[101,95],[103],{"url":117,"sources":118,"tags":119},"https://git.kernel.org/stable/c/528f0ba9f7a4bc1b61c9b6eb591ff97ca37cac6b",[101,95],[103],{"url":121,"sources":122,"tags":123},"https://git.kernel.org/stable/c/fb9895ab9533534335fa83d70344b397ac862c81",[101,95],[103],{"url":125,"sources":126,"tags":127},"https://git.kernel.org/stable/c/136f69a04e71ba3458d137aec3bb2ce1232c0289",[101,95],[103],{"url":129,"sources":130,"tags":131},"https://git.kernel.org/stable/c/f74a7afc224acd5e922c7a2e52244d891bbe44ee",[101,95],[103],[],{"date":134,"score":91,"percentile":135},"2026-06-04",0.00696,[137,141,143,145,147,150,153,155,158,161,163,165,167,169,172,176,179,182,184,186,188,190,192,194,197,200,203,205,207,210,213,216,218,221,223,226,229,232,234,236,238,241,244,247,249,252,255,257,260,262,264,266,268,270,272,274,276,278,280,282,284,286,289,292,295,298,301,304,307,309,311,313,316,318,320,322,324,326,328,330,332,334,336,338,340,342,344,346,349,352],{"date":138,"score":139,"percentile":140},"2025-11-04",0.00007,0.00359,{"date":142,"score":139,"percentile":140},"2025-11-05",{"date":144,"score":139,"percentile":140},"2025-11-06",{"date":146,"score":139,"percentile":140},"2025-11-07",{"date":148,"score":139,"percentile":149},"2025-11-08",0.00357,{"date":151,"score":139,"percentile":152},"2025-11-09",0.00356,{"date":154,"score":139,"percentile":152},"2025-11-10",{"date":156,"score":139,"percentile":157},"2025-11-11",0.00352,{"date":159,"score":139,"percentile":160},"2025-11-12",0.00347,{"date":162,"score":139,"percentile":160},"2025-11-13",{"date":164,"score":139,"percentile":160},"2025-11-14",{"date":166,"score":139,"percentile":160},"2025-11-15",{"date":168,"score":139,"percentile":160},"2025-11-16",{"date":170,"score":139,"percentile":171},"2025-11-17",0.00348,{"date":173,"score":174,"percentile":175},"2025-11-18",0.0009,0.21821,{"date":177,"score":174,"percentile":178},"2025-11-19",0.21833,{"date":180,"score":139,"percentile":181},"2025-11-20",0.00223,{"date":183,"score":139,"percentile":152},"2025-11-21",{"date":185,"score":139,"percentile":152},"2025-11-22",{"date":187,"score":139,"percentile":152},"2025-11-23",{"date":189,"score":139,"percentile":149},"2025-11-24",{"date":191,"score":139,"percentile":149},"2025-11-25",{"date":193,"score":139,"percentile":149},"2025-11-26",{"date":195,"score":139,"percentile":196},"2025-11-27",0.00385,{"date":198,"score":139,"percentile":199},"2025-11-28",0.00389,{"date":201,"score":139,"percentile":202},"2025-11-29",0.00392,{"date":204,"score":139,"percentile":202},"2025-11-30",{"date":206,"score":139,"percentile":199},"2025-12-01",{"date":208,"score":139,"percentile":209},"2025-12-02",0.00388,{"date":211,"score":139,"percentile":212},"2025-12-03",0.0039,{"date":214,"score":139,"percentile":215},"2025-12-04",0.00396,{"date":217,"score":139,"percentile":215},"2025-12-05",{"date":219,"score":139,"percentile":220},"2025-12-06",0.00395,{"date":222,"score":139,"percentile":220},"2025-12-07",{"date":224,"score":139,"percentile":225},"2025-12-08",0.004,{"date":227,"score":139,"percentile":228},"2025-12-09",0.00411,{"date":230,"score":139,"percentile":231},"2025-12-10",0.0041,{"date":233,"score":139,"percentile":196},"2025-12-11",{"date":235,"score":139,"percentile":209},"2025-12-12",{"date":237,"score":139,"percentile":209},"2025-12-13",{"date":239,"score":139,"percentile":240},"2025-12-14",0.00386,{"date":242,"score":139,"percentile":243},"2025-12-15",0.00384,{"date":245,"score":139,"percentile":246},"2025-12-16",0.00383,{"date":248,"score":139,"percentile":246},"2025-12-17",{"date":250,"score":139,"percentile":251},"2025-12-18",0.00382,{"date":253,"score":139,"percentile":254},"2025-12-19",0.00381,{"date":256,"score":139,"percentile":254},"2025-12-20",{"date":258,"score":139,"percentile":259},"2025-12-21",0.0038,{"date":261,"score":139,"percentile":251},"2025-12-22",{"date":263,"score":139,"percentile":196},"2025-12-23",{"date":265,"score":139,"percentile":240},"2025-12-24",{"date":267,"score":139,"percentile":240},"2025-12-25",{"date":269,"score":139,"percentile":243},"2025-12-26",{"date":271,"score":139,"percentile":259},"2025-12-27",{"date":273,"score":139,"percentile":243},"2025-12-28",{"date":275,"score":139,"percentile":243},"2025-12-29",{"date":277,"score":139,"percentile":254},"2025-12-30",{"date":279,"score":139,"percentile":259},"2025-12-31",{"date":281,"score":139,"percentile":254},"2026-01-01",{"date":283,"score":139,"percentile":251},"2026-01-02",{"date":285,"score":139,"percentile":246},"2026-01-03",{"date":287,"score":139,"percentile":288},"2026-01-04",0.00377,{"date":290,"score":139,"percentile":291},"2026-01-05",0.00374,{"date":293,"score":139,"percentile":294},"2026-01-06",0.00373,{"date":296,"score":139,"percentile":297},"2026-01-07",0.00372,{"date":299,"score":139,"percentile":300},"2026-01-08",0.00375,{"date":302,"score":139,"percentile":303},"2026-01-09",0.00378,{"date":305,"score":139,"percentile":306},"2026-01-10",0.00379,{"date":308,"score":139,"percentile":300},"2026-01-11",{"date":310,"score":139,"percentile":297},"2026-01-12",{"date":312,"score":139,"percentile":297},"2026-01-13",{"date":314,"score":139,"percentile":315},"2026-01-14",0.00376,{"date":317,"score":139,"percentile":315},"2026-01-15",{"date":319,"score":139,"percentile":288},"2026-01-16",{"date":321,"score":139,"percentile":315},"2026-01-17",{"date":323,"score":139,"percentile":259},"2026-01-18",{"date":325,"score":139,"percentile":288},"2026-01-19",{"date":327,"score":139,"percentile":300},"2026-01-20",{"date":329,"score":139,"percentile":300},"2026-01-21",{"date":331,"score":139,"percentile":315},"2026-01-22",{"date":333,"score":139,"percentile":259},"2026-01-23",{"date":335,"score":139,"percentile":251},"2026-01-24",{"date":337,"score":139,"percentile":251},"2026-01-25",{"date":339,"score":139,"percentile":196},"2026-01-26",{"date":341,"score":139,"percentile":212},"2026-01-27",{"date":343,"score":139,"percentile":202},"2026-01-28",{"date":345,"score":139,"percentile":220},"2026-01-29",{"date":347,"score":139,"percentile":348},"2026-01-30",0.00405,{"date":350,"score":139,"percentile":351},"2026-01-31",0.00407,{"date":353,"score":139,"percentile":354},"2026-02-01",0.00408,[356],{"source":95,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":357,"cvss_v4_0":9},{"baseScore":93,"baseSeverity":358,"vectorString":96,"impactScore":359,"exploitabilityScore":360},"MEDIUM",6,4.6,[362,397],{"ecosystem":9,"name":363,"vendor":364,"product":364,"cpe_part":365,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":366},"Linux","linux","a",[367,374,377,380,383,386,389,392,395],{"version":368,"is_range":369,"range_type":101,"version_start":370,"version_start_type":371,"version_end":372,"version_end_type":373,"fixed_in":9},">= 0cdd49a1d1a483d80170d9e592f832274e8bce1b, \u003C c64e4dca9aefd232b17ac4c779b608b286654e81",true,"0cdd49a1d1a483d80170d9e592f832274e8bce1b","including","c64e4dca9aefd232b17ac4c779b608b286654e81","excluding",{"version":375,"is_range":369,"range_type":101,"version_start":370,"version_start_type":371,"version_end":376,"version_end_type":373,"fixed_in":9},">= 0cdd49a1d1a483d80170d9e592f832274e8bce1b, \u003C 8e7346bfea56453e31b7421c1c17ca2fb9ed613d","8e7346bfea56453e31b7421c1c17ca2fb9ed613d",{"version":378,"is_range":369,"range_type":101,"version_start":370,"version_start_type":371,"version_end":379,"version_end_type":373,"fixed_in":9},">= 0cdd49a1d1a483d80170d9e592f832274e8bce1b, \u003C 6ad3e9fd3632106696692232bf7ff88b9f7e1bc3","6ad3e9fd3632106696692232bf7ff88b9f7e1bc3",{"version":381,"is_range":369,"range_type":101,"version_start":370,"version_start_type":371,"version_end":382,"version_end_type":373,"fixed_in":9},">= 0cdd49a1d1a483d80170d9e592f832274e8bce1b, \u003C 241f230324337ed5eae3846a554fb6d15169872c","241f230324337ed5eae3846a554fb6d15169872c",{"version":384,"is_range":369,"range_type":101,"version_start":370,"version_start_type":371,"version_end":385,"version_end_type":373,"fixed_in":9},">= 0cdd49a1d1a483d80170d9e592f832274e8bce1b, \u003C 528f0ba9f7a4bc1b61c9b6eb591ff97ca37cac6b","528f0ba9f7a4bc1b61c9b6eb591ff97ca37cac6b",{"version":387,"is_range":369,"range_type":101,"version_start":370,"version_start_type":371,"version_end":388,"version_end_type":373,"fixed_in":9},">= 0cdd49a1d1a483d80170d9e592f832274e8bce1b, \u003C fb9895ab9533534335fa83d70344b397ac862c81","fb9895ab9533534335fa83d70344b397ac862c81",{"version":390,"is_range":369,"range_type":101,"version_start":370,"version_start_type":371,"version_end":391,"version_end_type":373,"fixed_in":9},">= 0cdd49a1d1a483d80170d9e592f832274e8bce1b, \u003C 136f69a04e71ba3458d137aec3bb2ce1232c0289","136f69a04e71ba3458d137aec3bb2ce1232c0289",{"version":393,"is_range":369,"range_type":101,"version_start":370,"version_start_type":371,"version_end":394,"version_end_type":373,"fixed_in":9},">= 0cdd49a1d1a483d80170d9e592f832274e8bce1b, \u003C f74a7afc224acd5e922c7a2e52244d891bbe44ee","f74a7afc224acd5e922c7a2e52244d891bbe44ee",{"version":396,"is_range":89,"range_type":101,"version_start":396,"version_start_type":371,"version_end":396,"version_end_type":371,"fixed_in":9},"4.6",{"ecosystem":9,"name":398,"vendor":364,"product":399,"cpe_part":400,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":401},"linux kernel","linux_kernel","o",[402,406,410,414,418,422,426,430,432,434,436,438],{"version":403,"is_range":369,"range_type":404,"version_start":9,"version_start_type":9,"version_end":405,"version_end_type":373,"fixed_in":9},"lt4.14.328","cpe","4.14.328",{"version":407,"is_range":369,"range_type":404,"version_start":408,"version_start_type":371,"version_end":409,"version_end_type":373,"fixed_in":9},"gte4.15_lt4.19.297","4.15","4.19.297",{"version":411,"is_range":369,"range_type":404,"version_start":412,"version_start_type":371,"version_end":413,"version_end_type":373,"fixed_in":9},"gte4.20_lt5.4.259","4.20","5.4.259",{"version":415,"is_range":369,"range_type":404,"version_start":416,"version_start_type":371,"version_end":417,"version_end_type":373,"fixed_in":9},"gte5.5_lt5.10.199","5.5","5.10.199",{"version":419,"is_range":369,"range_type":404,"version_start":420,"version_start_type":371,"version_end":421,"version_end_type":373,"fixed_in":9},"gte5.11_lt5.15.136","5.11","5.15.136",{"version":423,"is_range":369,"range_type":404,"version_start":424,"version_start_type":371,"version_end":425,"version_end_type":373,"fixed_in":9},"gte5.16_lt6.1.59","5.16","6.1.59",{"version":427,"is_range":369,"range_type":404,"version_start":428,"version_start_type":371,"version_end":429,"version_end_type":373,"fixed_in":9},"gte6.2_lt6.5.8","6.2","6.5.8",{"version":431,"is_range":89,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.6:rc1",{"version":433,"is_range":89,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.6:rc2",{"version":435,"is_range":89,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.6:rc3",{"version":437,"is_range":89,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.6:rc4",{"version":439,"is_range":89,"range_type":404,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.6:rc5"]