← voltar
CVE-2021-3600

CVE-2021-3600

CVSS 7.8 HIGHEPSS 0.3%CWE-125CWE-787
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 7.8EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
08 jan 2024Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Produtos afetados
The Linux Kernel Organization · linux

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3600https://git.kernel.org/linus/e88b2c6e5a4d9ce30d75391e4d950da74bb2bd90https://ubuntu.com/security/notices/USN-5003-1