1. Home
  2. Vulnerabilities
  3. CVE-2021-38199

CVE-2021-38199

CVSS v3.1 6.5 (Medium)
65% Progress
CVSS v2.0 3.3 (Low)
33% Progress
EPSS 0.10 % (43th)
0.10% Progress
Affected Products 8
Advisories 11
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

fs/nfs/nfs4client.c in the Linux kernel before 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of service (hanging of mounts) by arranging for those servers to be unreachable during trunking detection.

Weaknesses
CWE-NVD-noinfo
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2021-08-08 20:15:07
(3 years ago)
Updated Date
2021-12-21 12:54:21
(2 years ago)

Affected Products

Debian

Linux

Netapp

Configuration #1

AND
    CPE23 From Up To
OR  
  Linux Kernel prior 5.13.4 version cpe:2.3:o:linux:linux_kernel < 5.13.4

Configuration #2

AND
    CPE23 From Up To
OR  
  Netapp Hci Bootstrap Os cpe:2.3:o:netapp:hci_bootstrap_os:-
OR  
  Running on/with
  Netapp Hci Compute Node cpe:2.3:h:netapp:hci_compute_node:-

Configuration #3

AND
    CPE23 From Up To
OR  
  Netapp Hci Management Node cpe:2.3:a:netapp:hci_management_node:-
OR  
  Running on/with
  Netapp Solidfire cpe:2.3:a:netapp:solidfire:-

Configuration #4

AND
    CPE23 From Up To
OR  
  Netapp Element Software cpe:2.3:a:netapp:element_software:-
OR  
  Running on/with
  Netapp Hci Storage Node cpe:2.3:h:netapp:hci_storage_node:-

Configuration #5

AND
    CPE23 From Up To
OR  
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0
OR  
  Running on/with
  Debian Linux 11.0 cpe:2.3:o:debian:debian_linux:11.0