← back
CVE-2021-33630

NULL-ptr-deref in network sched

CVSS 5.5 MEDIUMEPSS 0.3%CWE-476
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.5EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
18 Jan 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
NULL Pointer Dereference vulnerability in openEuler kernel on Linux (network modules) allows Pointer Manipulation. This vulnerability is associated with program files net/sched/sch_cbs.C. This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected products
openEuler · kernel

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://gitee.com/src-openeuler/kernel/pulls/1389https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3e8b9bfa110896f95d602d8c98d5f9d67e41d78chttps://lists.debian.org/debian-lts-announce/2024/06/msg00020.htmlhttps://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031http://www.openwall.com/lists/oss-security/2024/01/30/10http://www.openwall.com/lists/oss-security/2024/01/30/3http://www.openwall.com/lists/oss-security/2024/01/30/4http://www.openwall.com/lists/oss-security/2024/01/30/5http://www.openwall.com/lists/oss-security/2024/01/30/9http://www.openwall.com/lists/oss-security/2024/01/31/2http://www.openwall.com/lists/oss-security/2024/01/31/3