CVE-2021-22555

critical-risk
Published 2021-07-07

A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space

Do I need to act?

!
85.2% chance of exploitation in next 30 days
EPSS score — higher than 15% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
!
1 public exploit available
50135
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.3/10 High
ADJACENT_NETWORK / HIGH complexity

Affected Products (20)

Affected Vendors

Linux Brocade Netapp

References (19)

Third Party Advisory http://packetstormsecurity.com/files/163528/Linux-Kernel-Netfilter-Heap-Out-Of-B...
Exploit http://packetstormsecurity.com/files/163878/Kernel-Live-Patch-Security-Notice-LS...
Exploit http://packetstormsecurity.com/files/164155/Kernel-Live-Patch-Security-Notice-LS...
Exploit http://packetstormsecurity.com/files/164437/Netfilter-x_tables-Heap-Out-Of-Bound...
Exploit http://packetstormsecurity.com/files/165477/Kernel-Live-Patch-Security-Notice-LS...
Mailing List https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ne...
Mailing List https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ne...
Exploit https://github.com/google/security-research/security/advisories/GHSA-xxx5-8mvq-3...
Third Party Advisory https://security.netapp.com/advisory/ntap-20210805-0010/
Third Party Advisory http://packetstormsecurity.com/files/163528/Linux-Kernel-Netfilter-Heap-Out-Of-B...
Exploit http://packetstormsecurity.com/files/163878/Kernel-Live-Patch-Security-Notice-LS...
Exploit http://packetstormsecurity.com/files/164155/Kernel-Live-Patch-Security-Notice-LS...
Exploit http://packetstormsecurity.com/files/164437/Netfilter-x_tables-Heap-Out-Of-Bound...
Exploit http://packetstormsecurity.com/files/165477/Kernel-Live-Patch-Security-Notice-LS...
Mailing List https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ne...
Mailing List https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ne...
Exploit https://github.com/google/security-research/security/advisories/GHSA-xxx5-8mvq-3...
Third Party Advisory https://security.netapp.com/advisory/ntap-20210805-0010/
US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-...
76
/ 100
critical-risk
Severity 22/34 · High
Exploitability 34/34 · Critical
Exposure 20/34 · Moderate