1. Home
  2. Vulnerabilities
  3. CVE-2021-4154

CVE-2021-4154

CVSS v3.1 8.8 (High)
88% Progress
CVSS v2.0 7.2 (High)
72% Progress
EPSS 0.04 % (5th)
0.04% Progress
Affected Products 4
Advisories 17
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a denial of service on the system.

Weaknesses
CWE-416
Use After Free
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2022-02-04 23:15:12
(2 years ago)
Updated Date
2023-01-19 15:53:48
(20 months ago)

Affected Products

Linux

Netapp

Redhat

Configuration #1

    CPE23 From Up To
  Linux Kernel from 5.1 version and prior 5.4.134 version cpe:2.3:o:linux:linux_kernel >= 5.1 < 5.4.134
  Linux Kernel from 5.5 version and prior 5.10.52 version cpe:2.3:o:linux:linux_kernel >= 5.5 < 5.10.52
  Linux Kernel from 5.11 version and prior 5.12.19 version cpe:2.3:o:linux:linux_kernel >= 5.11 < 5.12.19
  Linux Kernel from 5.13 version and prior 5.13.4 version cpe:2.3:o:linux:linux_kernel >= 5.13 < 5.13.4
  Linux Kernel 5.14 Rc1 cpe:2.3:o:linux:linux_kernel:5.14:rc1

Configuration #2

    CPE23 From Up To
  Redhat Virtualization 4.0 cpe:2.3:a:redhat:virtualization:4.0
  Redhat Enterprise Linux 8.0 cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-

Configuration #3

    CPE23 From Up To
  Netapp Hci Baseboard Management Controller H300e cpe:2.3:a:netapp:hci_baseboard_management_controller:h300e
  Netapp Hci Baseboard Management Controller H300s cpe:2.3:a:netapp:hci_baseboard_management_controller:h300s
  Netapp Hci Baseboard Management Controller H410s cpe:2.3:a:netapp:hci_baseboard_management_controller:h410s
  Netapp Hci Baseboard Management Controller H500e cpe:2.3:a:netapp:hci_baseboard_management_controller:h500e
  Netapp Hci Baseboard Management Controller H500s cpe:2.3:a:netapp:hci_baseboard_management_controller:h500s
  Netapp Hci Baseboard Management Controller H700e cpe:2.3:a:netapp:hci_baseboard_management_controller:h700e
  Netapp Hci Baseboard Management Controller H700s cpe:2.3:a:netapp:hci_baseboard_management_controller:h700s