1. Home
  2. Vulnerabilities
  3. CVE-2021-37600

CVE-2021-37600

CVSS v3.1 5.5 (Medium)
55% Progress
CVSS v2.0 1.2 (Low)
12% Progress
EPSS 0.14 % (51th)
0.14% Progress
Affected Products 2
Advisories 13
NVD Status Modified
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments, and possibly in all realistic environments.

Weaknesses
CWE-190
Integer Overflow or Wraparound
CVE Status
PUBLISHED
NVD Status
Modified
CNA
MITRE
Published Date
2021-07-30 14:15:18
(3 years ago)
Updated Date
2024-08-04 02:15:24
(6 weeks ago)

Affected Products

Kernel

Netapp

Configuration #1

    CPE23 From Up To
  Kernel Util-linux 2.37.1 and prior versions cpe:2.3:a:kernel:util-linux <= 2.37.1

Configuration #2

    CPE23 From Up To
  Netapp Ontap Select Deploy Administration Utility cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-