7.4

CVE-2021-20322

A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version <= 5.14.21
FedoraprojectFedora Version34
DebianDebian Linux Version9.0
DebianDebian Linux Version10.0
NetappActive Iq Unified Manager Version- SwPlatformvmware_vsphere
NetappE-series Santricity Os Controller Version >= 11.0 <= 11.70.1
NetappAff A700s Firmware Version-
   NetappAff A700s Version-
NetappH700s Firmware Version-
   NetappH700s Version-
NetappH700e Firmware Version-
   NetappH700e Version-
NetappH500s Firmware Version-
   NetappH500s Version-
NetappH410s Firmware Version-
   NetappH410s Version-
NetappH500e Firmware Version-
   NetappH500e Version-
NetappH300e Firmware Version-
   NetappH300e Version-
NetappH300s Firmware Version-
   NetappH300s Version-
NetappHci Compute Node Firmware Version-
   NetappHci Compute Node Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.12% 0.32
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.4 2.2 5.2
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
nvd@nist.gov 5.8 8.6 4.9
AV:N/AC:M/Au:N/C:P/I:P/A:N
CWE-330 Use of Insufficiently Random Values

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

https://bugzilla.redhat.com/show_bug.cgi?id=2014230
Third Party Advisory
Issue Tracking