Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2021-3715

Published: 02/03/2022 Updated: 24/01/2023
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 642
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

A flaw was found in the "Routing decision" classifier in the Linux kernel's Traffic Control networking subsystem in the way it handled changing of classification filters, leading to a use-after-free condition. This flaw allows unprivileged local users to escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

Vendor Advisories

Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 76 Update Services for SAP SolutionsRed Hat Produ ...

Github Repositories

https://github.com/Markakd/CVE-2022-2588

exploit for CVE-2022-2588

CVE-2022-2588 The fix The bug is fixed in Linux v519 by this commit The bug The bug was introduced in Linux v317 by this commit back to 2014 It requires User Namespaces to trigger This bug is very similar to CVE-2021-3715, which was caused by improper operation on the route4_filter's linked list More details of CVE-2021-3715 could be found at the blackhat talk (page

https://github.com/dom4570/CVE-2022-2588

CVE-2022-2588 The fix The bug is fixed in Linux v519 by this commit The bug The bug was introduced in Linux v317 by this commit back to 2014 It requires User Namespaces to trigger This bug is very similar to CVE-2021-3715, which was caused by improper operation on the route4_filter's linked list More details of CVE-2021-3715 could be found at the blackhat talk (page

https://github.com/Markakd/GREBE

GREBE GREBE is an object-driven tool to identify Multiple Error Behavior of kernel bugs GREBE consists of two components -- a static analysis tool to identify critical kernel objects of triggering the bug, and a fuzzing tool based Syzkaller to find its other error behavior Refer to our paper for more details Usage scenario You find a low-severity bug in kernel, and would lik

References

CWE-416https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ef299cc3fa1a9e1288665a9fdc8bff55629fd359https://access.redhat.com/errata/RHSA-2022:7173https://nvd.nist.govhttps://github.com/Markakd/CVE-2022-2588
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519open redirectCVE-2024-21683cache poisoningCVE-2021-47524CVE-2021-47521CVE-2024-5229CVE-2021-47560local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook