VDB
CVE-2021-3748
CVE-2021-3748
PUBLISHED
Es existiert eine Schwachstelle in Red Hat Enterprise Linux. Die Schwachstelle besteht in der Funktion "virtio-net device" der QEMU-Komponente und ist auf einen Use-after-Free-Fehler zurückzuführen. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um beliebigen Programmcode mit Rechten des Dienstes auszuführen oder einen Denial of Service Zustand herbeizuführen.
EPSS 0.03% · 10.9th percentile
Risk Scores
EPSS Score
0.03%
10.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux | |
| Ubuntu | Ubuntu Linux | |
| Debian | Debian Linux | |
| Oracle | Oracle Linux | |
| Gentoo | Gentoo Linux | |
| Red Hat | Red Hat Enterprise Linux 8 |
Timeline
- Nov 2, 2021 CVE Published
- Mar 24, 2022 EPSS Score
- May 14, 2022 EPSS Score
- Jul 4, 2022 EPSS Score
- Aug 25, 2022 EPSS Score
- Oct 15, 2022 EPSS Score
- Dec 5, 2022 EPSS Score
- Jan 10, 2023 CVE Updated
- Jan 25, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 17, 2023 EPSS Score
- May 6, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-0096.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0096 advisory
- https://linux.oracle.com/errata/ELSA-2023-12014.html advisory
- https://linux.oracle.com/errata/ELSA-2023-12011.html advisory
- https://linux.oracle.com/errata/ELSA-2023-12013.html advisory
- https://linux.oracle.com/errata/ELSA-2023-12012.html advisory
- https://linux.oracle.com/errata/ELSA-2022-10036.html advisory
- https://linux.oracle.com/errata/ELSA-2022-10033.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-November/009698.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-November/009697.html advisory
- https://access.redhat.com/errata/RHSA-2021:4112 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-November/009717.html advisory
- https://access.redhat.com/errata/RHSA-2021:5036 advisory
- https://linux.oracle.com/errata/ELSA-2022-9460.html advisory
- https://ubuntu.com/security/notices/USN-5307-1 advisory
- https://lists.debian.org/debian-lts-announce/2022/04/msg00002.html advisory
- https://linux.oracle.com/errata/ELSA-2022-9492.html advisory
- https://linux.oracle.com/errata/ELSA-2022-9491.html advisory
- https://linux.oracle.com/errata/ELSA-2022-9494.html advisory
- https://linux.oracle.com/errata/ELSA-2022-9493.html advisory
…and 7 more