CVE-2013-6282

CVSS 8.8 HIGHEPSS 39.7%● KEVCWE-20

Vexday Risk Score

98Fix now

SSVC decision (CISA)

Act

Exploitation + impact → act immediately

CVSS 8.8EPSS 39.7%KEV simPoC públicaNuclei —Metasploit simPatch referenciado

Lifecycle

06 Sep 2013Metasploit module available

18 Nov 2013Public PoC

19 Nov 2013Published on NVD

15 Sep 2022Active exploitation (CISA KEV)

Recommendation: Patch as soon as possible — active exploitation confirmed.

In short

A flaw in Linux kernel memory access functions on ARM devices allows attackers to read or change kernel memory directly through a malicious app. This is dangerous because kernel memory controls everything on the system, from user data to security features.

Technical detail

The get_user and put_user API functions in Linux kernel <3.5.5 on ARMv6k and ARMv7 platforms lack proper address validation, enabling arbitrary kernel memory read/write via user-space applications. This CWE-20 input validation failure allows privilege escalation and information disclosure on affected ARM-based systems, including Android devices.

Summary generated and translated by AI from the official description.

The (1) get_user and (2) put_user API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers to read or modify the contents of arbitrary kernel memory locations via a crafted application, as exploited in the wild against Android devices in October and November 2013.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

n/a · n/a

public PoCs found — 7

githubgithub.com/fi01/libput_user_exploit★ 27 githubgithub.com/timwr/CVE-2013-6282★ 20 githubgithub.com/jeboo/bypasslkm★ 13 githubgithub.com/fi01/libget_user_exploit★ 8 cve_referencewww.exploit-db.com/exploits/40975/unverified exploitdbwww.exploit-db.com/exploits/40975unverified exploitdbwww.exploit-db.com/exploits/31574unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8404663f81d212918ff85f493649a7991209fa04 https://github.com/torvalds/linux/commit/8404663f81d212918ff85f493649a7991209fa04 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-6282 https://www.exploit-db.com/exploits/40975/http://www.codeaurora.org/projects/security-advisories/missing-access-checks-putusergetuser-kernel-api-cve-2013-6282 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.5.5 http://www.openwall.com/lists/oss-security/2013/11/14/11 http://www.securityfocus.com/bid/63734 http://www.ubuntu.com/usn/USN-2067-1