VDB
CVE-2021-4202
CVE-2021-4202
PUBLISHED
Es existiert eine Schwachstelle im Linux Kernel. Ein Use-after-Free-Fehler besteht in "nci_request in net/nfc/nci/core.c". In Folge ist eine Privilegieneskalation möglich. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern.
EPSS 0.08% · 23.7th percentile
Risk Scores
EPSS Score
0.08%
23.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| NetApp | NetApp ActiveIQ Unified Manager | |
| Open Source | Open Source Linux Kernel | |
| Ubuntu | Ubuntu Linux | |
| Oracle | Oracle Linux |
Exploit Intelligence
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=3e3b5dfcd16a3e254aab61bd1e8c417dd4503102 (nist-nvd)
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=48b71a9e66c2eab60564b1b1c85f4928ed04e406 (nist-nvd)
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=86cdf8e38792545161dbe3350a7eced558ba4d15 (nist-nvd)
Timeline
- Jan 25, 2022 CVE Published
- Mar 26, 2022 EPSS Score
- May 16, 2022 EPSS Score
- Jul 6, 2022 EPSS Score
- Aug 27, 2022 EPSS Score
- Oct 16, 2022 EPSS Score
- Dec 6, 2022 EPSS Score
- Jan 26, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 18, 2023 EPSS Score
- May 8, 2023 EPSS Score
- May 18, 2023 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0239.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0239 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/014918.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-April/014466.html advisory
- https://ubuntu.com/security/notices/USN-6001-1 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-March/014114.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-March/014072.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-March/014045.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-March/013982.html advisory
- https://linux.oracle.com/errata/ELSA-2022-1988.html advisory
- https://access.redhat.com/errata/RHSA-2022:4956 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-4202 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-4203 advisory
- https://linux.oracle.com/errata/ELSA-2022-9348.html advisory
- https://oss.oracle.com/pipermail/oraclevm-errata/2022-May/001052.html advisory
- https://access.redhat.com/errata/RHSA-2022:1975 advisory
- https://access.redhat.com/errata/RHSA-2022:1988 advisory
- https://ubuntu.com/security/notices/USN-5500-1 advisory
- https://access.redhat.com/errata/RHSA-2022:5483 advisory
- https://ubuntu.com/security/notices/USN-5505-1 advisory
…and 14 more