A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.6. Affected is the function cdnsp_endpoint_init of the component usb. The manipulation leads to null pointer dereference.

This vulnerability is traded as CVE-2021-47528. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.