1. Home
  2. Vulnerabilities
  3. CVE-2021-38201

CVE-2021-38201

CVSS v3.1 7.5 (High)
75% Progress
CVSS v2.0 5 (Medium)
50% Progress
EPSS 0.38 % (74th)
0.38% Progress
Affected Products 7
Advisories 8
NVD Status Analyzed
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

net/sunrpc/xdr.c in the Linux kernel before 5.13.4 allows remote attackers to cause a denial of service (xdr_set_page_base slab-out-of-bounds access) by performing many NFS 4.2 READ_PLUS operations.

Weaknesses
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE Status
PUBLISHED
NVD Status
Analyzed
CNA
MITRE
Published Date
2021-08-08 20:15:07
(3 years ago)
Updated Date
2024-04-23 18:57:47
(4 months ago)

Affected Products

Linux

Netapp

Configuration #1

    CPE23 From Up To
  Linux Kernel from 5.11.0 version and prior 5.12.19 version cpe:2.3:o:linux:linux_kernel >= 5.11.0 < 5.12.19
  Linux Kernel from 5.13.0 version and prior 5.13.4 version cpe:2.3:o:linux:linux_kernel >= 5.13.0 < 5.13.4

Configuration #2

AND
    CPE23 From Up To
OR  
  Netapp Hci Bootstrap Os cpe:2.3:o:netapp:hci_bootstrap_os:-
OR  
  Running on/with
  Netapp Hci Compute Node cpe:2.3:h:netapp:hci_compute_node:-

Configuration #3

    CPE23 From Up To
  Netapp Hci Management Node cpe:2.3:a:netapp:hci_management_node:-
  Netapp Solidfire cpe:2.3:a:netapp:solidfire:-

Configuration #4

AND
    CPE23 From Up To
OR  
  Netapp Element Software cpe:2.3:a:netapp:element_software:-
OR  
  Running on/with
  Netapp Hci Storage Node cpe:2.3:h:netapp:hci_storage_node:-