An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver.
4.4.0-157.1854.4.0-1090.1014.15.0-1047.49~16.04.14.15.0-1056.614.15.0-1041.434.15.0-60.67~16.04.14.4.0-1052.594.15.0-1022.25~16.04.14.4.0-1117.1264.4.0-1121.127Exploitability
AV:PAC:LPR:NUI:NScope
S:UImpact
C:NI:NA:HCVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H