4.6
CVSSv2

CVE-2021-38166

Published: 07/08/2021 Updated: 25/09/2021
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

In kernel/bpf/hashtab.c in the Linux kernel up to and including 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAP_SYS_ADMIN capability.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

fedoraproject fedora 33

fedoraproject fedora 34

Vendor Advisories

A flaw was found in the Linux kernel An integer overflow and out-of-bounds write can occur when many elements are placed in a single bucket The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability ...
In kernel/bpf/hashtabc in the Linux kernel through 5138, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket NOTE: exploitation might be impractical without the CAP_SYS_ADMIN capability ...
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2020-3702 A flaw was found in the driver for Atheros IEEE 80211n family of chipsets (ath9k) allowing information disclosure CVE-2020-16119 Hadar Manor reported a use-after-free in the D ...