Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-5p3h-bsad-fydk
Vulnerability ID VCID-5p3h-bsad-fydk
Aliases CVE-2008-2812
Summary kernel: NULL ptr dereference in multiple network drivers due to missing checks in tty code
Status Published
Exploitability 0.5
Weighted Severity 7.0
Risk 3.5
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-476 NULL Pointer Dereference
System Score Found at
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
epss 0.00098 https://api.first.org/data/v1/epss?cve=CVE-2008-2812
cvssv2 7.2 https://nvd.nist.gov/vuln/detail/CVE-2008-2812
cvssv3.1 7.8 https://nvd.nist.gov/vuln/detail/CVE-2008-2812
Reference id Reference type URL
http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.25.y.git%3Ba=commitdiff%3Bh=2a739dd53ad7ee010ae6e155438507f329dce788
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.10
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00012.html
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00008.html
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00001.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2812.json
https://api.first.org/data/v1/epss?cve=CVE-2008-2812
http://secunia.com/advisories/30982
http://secunia.com/advisories/31048
http://secunia.com/advisories/31202
http://secunia.com/advisories/31229
http://secunia.com/advisories/31341
http://secunia.com/advisories/31551
http://secunia.com/advisories/31614
http://secunia.com/advisories/31685
http://secunia.com/advisories/32103
http://secunia.com/advisories/32370
http://secunia.com/advisories/32759
http://secunia.com/advisories/33201
https://exchange.xforce.ibmcloud.com/vulnerabilities/43687
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11632
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6633
http://support.avaya.com/elmodocs2/security/ASA-2008-365.htm
http://www.debian.org/security/2008/dsa-1630
http://www.openwall.com/lists/oss-security/2008/07/03/2
http://www.redhat.com/support/errata/RHSA-2008-0612.html
http://www.redhat.com/support/errata/RHSA-2008-0665.html
http://www.redhat.com/support/errata/RHSA-2008-0973.html
http://www.securityfocus.com/bid/30076
http://www.vupen.com/english/advisories/2008/2063/references
453419 https://bugzilla.redhat.com/show_bug.cgi?id=453419
cpe:2.3:a:avaya:communication_manager:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:communication_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:avaya:expanded_meet-me_conferencing:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:expanded_meet-me_conferencing:*:*:*:*:*:*:*:*
cpe:2.3:a:avaya:intuity_audix_lx:2.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:intuity_audix_lx:2.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:meeting_exchange:5.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:meeting_exchange:5.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:message_networking:3.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:message_networking:3.1:*:*:*:*:*:*:*
cpe:2.3:a:avaya:messaging_storage_server:4.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:messaging_storage_server:4.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:proactive_contact:4.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:proactive_contact:4.0:*:*:*:*:*:*:*
cpe:2.3:a:avaya:sip_enablement_services:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:sip_enablement_services:-:*:*:*:*:*:*:*
cpe:2.3:a:avaya:sip_enablement_services:4.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:avaya:sip_enablement_services:4.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*
cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:novell:linux_desktop:9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:novell:linux_desktop:9:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:10.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:10.3:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp1:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp2:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp1:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp2:*:*:*:*:*:*
CVE-2008-2812 https://nvd.nist.gov/vuln/detail/CVE-2008-2812
RHSA-2008:0612 https://access.redhat.com/errata/RHSA-2008:0612
RHSA-2008:0665 https://access.redhat.com/errata/RHSA-2008:0665
RHSA-2008:0973 https://access.redhat.com/errata/RHSA-2008:0973
USN-637-1 https://usn.ubuntu.com/637-1/
No exploits are available.
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C Found at https://nvd.nist.gov/vuln/detail/CVE-2008-2812
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2008-2812
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.27036
EPSS Score 0.00098
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T14:59:07.651537+00:00 RedHat Importer Import https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2812.json 38.0.0