1. Home
  2. Vulnerabilities
  3. CVE-2021-23134

CVE-2021-23134

CVSS v3.1 7.8 (High)
78% Progress
CVSS v2.0 4.6 (Medium)
46% Progress
EPSS 0.04 % (5th)
0.04% Progress
Affected Products 3
Advisories 51
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Use After Free vulnerability in nfc sockets in the Linux Kernel before 5.12.4 allows local attackers to elevate their privileges. In typical configurations, the issue can only be triggered by a privileged local user with the CAP_NET_RAW capability.

Weaknesses
CWE-416
Use After Free
Related CVEs
CVE Status
PUBLISHED
CNA
Palo Alto Networks, Inc.
Published Date
2021-05-12 23:15:07
(3 years ago)
Updated Date
2023-11-07 03:30:47
(10 months ago)

Affected Products

Debian

Fedoraproject

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel prior 5.12.4 version cpe:2.3:o:linux:linux_kernel < 5.12.4

Configuration #2

    CPE23 From Up To
  Fedoraproject Fedora 33 cpe:2.3:o:fedoraproject:fedora:33
  Fedoraproject Fedora 34 cpe:2.3:o:fedoraproject:fedora:34

Configuration #3

    CPE23 From Up To
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0