← back
CVE-2016-4997

CVE-2016-4997

38Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 5.7%
from disclosure to weapon86 days
Published on NVDJul 3
1st PoC+86d
metasploitJun 3
exploitation probability
5.7%top 8% of all CVEs
observed exploitation
nono source reports it
4 public exploit(s)
The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.