Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default configuration of udev on Linux does not warn the user before enabling additional Human Interface Device (HID) functionality over USB, which allows user-assisted attackers to execute arbitrary programs via crafted USB data, as demonstrated by keyboard and mouse data sent by malware on a smartphone that the user connected to the computer.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux udev默认配置任意程序执行漏洞
Vulnerability Description
udev是Linux kernel系列的设备管理器,主要功能是管理/dev目录下的设备节点。 基于Linux平台的udev的默认配置没有警告用户就通过USB启用了附加的Human Interface Device(HID)功能。用户协助的攻击者可以借助特制USB数据执行任意程序。该漏洞已经通过智能手机(由用户连接至电脑)上恶意软件发送的键盘和鼠标数据得到证实。
CVSS Information
N/A
Vulnerability Type
N/A