Executive Summary

Informations
Name CVE-2021-4083 First vendor Publication 2022-01-18
Vendor Cve Last vendor Modification 2022-03-17

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Overall CVSS Score 7
Base Score 7 Environmental Score 7
impact SubScore 5.9 Temporal Score 7
Exploitabality Sub Score 1
 
Attack Vector Local Attack Complexity High
Privileges Required Low User Interaction None
Scope Unchanged Confidentiality Impact High
Integrity Impact High Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 6.9 Attack Range Local
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 3.4 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allows a local user to crash the system or escalate their privileges on the system. This flaw affects Linux kernel versions prior to 5.16-rc4.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4083

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-416 Use After Free

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 15
Application 1
Application 1
Os 2
Os 3425

Sources (Detail)

Source Url
CONFIRM https://security.netapp.com/advisory/ntap-20220217-0005/
DEBIAN https://www.debian.org/security/2022/dsa-5096
MISC https://bugzilla.redhat.com/show_bug.cgi?id=2029923
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id...
MLIST https://lists.debian.org/debian-lts-announce/2022/03/msg00011.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
Date Informations
2022-03-31 01:57:52
  • Multiple Updates
2022-03-17 21:23:07
  • Multiple Updates
2022-03-10 21:23:18
  • Multiple Updates
2022-02-25 21:23:13
  • Multiple Updates
2022-02-17 21:23:06
  • Multiple Updates
2022-02-01 00:23:05
  • Multiple Updates
2022-01-28 17:23:08
  • Multiple Updates
2022-01-25 21:23:06
  • Multiple Updates
2022-01-18 21:22:55
  • First insertion