7.2
CVSSv2

CVE-2021-37576

Published: 26/07/2021 Updated: 18/10/2021
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

arch/powerpc/kvm/book3s_rtas.c in the Linux kernel up to and including 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

fedoraproject fedora 33

fedoraproject fedora 34

Vendor Advisories

A flaw was found on the Linux kernel On the PowerPC platform, the KVM guest allows the OS users to cause host OS memory corruption via rtas_argsnargs The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability ...
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2020-3702 A flaw was found in the driver for Atheros IEEE 80211n family of chipsets (ath9k) allowing information disclosure CVE-2020-16119 Hadar Manor reported a use-after-free in the D ...

Mailing Lists

Michael Ellerman <mpe () ellerman id au> writes: This has been assigned CVE-2021-37576 cheers ...

Github Repositories

CVE-2021-37576 Exploit arch/powerpc/kvm/book3s_rtasc in the Linux kernel through 5135 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_argsnargs, aka CID-f62f3c20647e Windows Binary PoC /CVE-2021-37576exe will run the exploit /CVE-2021-37576exe -t Target IP /CVE-2021-37576exe -t wwwexamplecom

CVE Diff Checker diff checker主要思路是使用历史diff代码到二次开发的项目里面匹配对应的补丁是否被修改 用法: python /mainpy 你的项目代码路径 比如说项目组引入Qemu作为第三方库,然后要快速检测该版本的Qemu源码存在哪些漏洞: python /mainpy /qemu-source-521