← back
CVE-2021-4157

CVE-2021-4157

EPSS 1.6%CWE-119
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
25 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirroring (replication of files with NFS). A user, having access to the NFS mount, could potentially use this flaw to crash the system or escalate privileges on the system.
Affected products
n/a · kernel

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=2034342https://lore.kernel.org/lkml/20210517140244.822185482%40linuxfoundation.org/https://security.netapp.com/advisory/ntap-20220602-0007/https://www.oracle.com/security-alerts/cpujul2022.html