CVE-2021-4204

CVSS v3.1 7.1 (High)

EPSS 0.04 % (5^th)

Affected Products 13

Advisories 12

An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. This flaw allows a local attacker with a special privilege to crash the system or leak internal information.

Weaknesses

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-20: Improper Input Validation

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2022-08-24 16:15:09
(2 years ago)
Updated Date: 2023-07-18 13:52:35
(14 months ago)

Affected Products

Debian

Debian Linux

Linux

Linux Kernel

Netapp

Redhat

Enterprise Linux

Configuration #1

AND

		CPE23	Up To
OR
	Linux Kernel prior 5.8.0 version	cpe:2.3:o:linux:linux_kernel	< 5.8.0
OR
	Running on/with
	Linux Kernel 5.8.0	cpe:2.3:o:linux:linux_kernel:5.8.0:-

Configuration #2

AND

		CPE23	From	Up To
OR
	Debian Linux 11.0	cpe:2.3:o:debian:debian_linux:11.0

Configuration #3

AND

		CPE23	From	Up To
OR
	Redhat Enterprise Linux 9.0	cpe:2.3:o:redhat:enterprise_linux:9.0

Configuration #4

AND

		CPE23
OR
	Netapp H300s Firmware	cpe:2.3:o:netapp:h300s_firmware:-
OR
	Running on/with
	Netapp H300s	cpe:2.3:h:netapp:h300s:-

Configuration #5

AND

		CPE23
OR
	Netapp H500s Firmware	cpe:2.3:o:netapp:h500s_firmware:-
OR
	Running on/with
	Netapp H500s	cpe:2.3:h:netapp:h500s:-

Configuration #6

AND

		CPE23
OR
	Netapp H700s Firmware	cpe:2.3:o:netapp:h700s_firmware:-
OR
	Running on/with
	Netapp H700s	cpe:2.3:h:netapp:h700s:-

Configuration #7

AND

		CPE23
OR
	Netapp H410s Firmware	cpe:2.3:o:netapp:h410s_firmware:-
OR
	Running on/with
	Netapp H410s	cpe:2.3:h:netapp:h410s:-

Configuration #8

AND

		CPE23
OR
	Netapp H410c Firmware	cpe:2.3:o:netapp:h410c_firmware:-
OR
	Running on/with
	Netapp H410c	cpe:2.3:h:netapp:h410c:-