Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-4135

Опубликовано: 14 июл. 2022
Источник: nvd
CVSS3: 5.5
EPSS Низкий

Описание

A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsim_map_alloc_elem being called. A local user could use this flaw to get unauthorized access to some data.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия до 5.16 (исключая)
cpe:2.3:o:linux:linux_kernel:5.16:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.16:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.16:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.16:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.16:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.16:rc5:*:*:*:*:*:*

EPSS

Процентиль: 31%
0.00115
Низкий

5.5 Medium

CVSS3

Дефекты

CWE-200
CWE-401

Связанные уязвимости

ubuntu логотип

CVE-2021-4135

CVSS3: 5.5
ubuntu
больше 3 лет назад

A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsim_map_alloc_elem being called. A local user could use this flaw to get unauthorized access to some data.

redhat логотип

CVE-2021-4135

CVSS3: 4.7
redhat
около 4 лет назад

A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsim_map_alloc_elem being called. A local user could use this flaw to get unauthorized access to some data.

msrc логотип

CVE-2021-4135

CVSS3: 5.5
msrc
больше 3 лет назад

A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsim_map_alloc_elem being called. A local user could use this flaw to get unauthorized access to some data.

debian логотип

CVE-2021-4135

CVSS3: 5.5
debian
больше 3 лет назад

A memory leak vulnerability was found in the Linux kernel's eBPF for t ...

fstec логотип

BDU:2022-05417

CVSS3: 5.5
fstec
около 4 лет назад

Уязвимость подсистемы eBPF ядра операционной системы Linux, позволяющая нарушителю получить несанкционированный доступ к устройству

EPSS

Процентиль: 31%
0.00115
Низкий

5.5 Medium

CVSS3

Дефекты

CWE-200
CWE-401