8.8

CVE-2021-3653

Exploit

EPSS 0.01%
Published 29.09.2021 20:15:08
Last modified 21.11.2024 06:22:04
Source secalert@redhat.com
Teams watchlist Login
Open Login

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7.

Affected products Warnungen 0 Metrics 3 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 2.6.30 < 4.4.282

Linux ≫ Linux Kernel Version >= 4.5 < 4.9.281

Linux ≫ Linux Kernel Version >= 4.10 < 4.14.245

Linux ≫ Linux Kernel Version >= 4.15 < 4.19.205

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.142

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.60

Linux ≫ Linux Kernel Version >= 5.11 < 5.13.12

Linux ≫ Linux Kernel Version5.14 Updaterc1

Linux ≫ Linux Kernel Version5.14 Updaterc2

Linux ≫ Linux Kernel Version5.14 Updaterc3

Linux ≫ Linux Kernel Version5.14 Updaterc4

Linux ≫ Linux Kernel Version5.14 Updaterc5

Linux ≫ Linux Kernel Version5.14 Updaterc6

Redhat ≫ Enterprise Linux Version7.0

Debian ≫ Debian Linux Version9.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.01%	0.013

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2	6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov	6.1	3.9	8.5	AV:L/AC:L/Au:N/C:P/I:P/A:C

CWE-862 Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

https://lists.debian.org/debian-lts-announce/2021/10/msg00010.html

Third Party Advisory

Mailing List

https://lists.debian.org/debian-lts-announce/2021/12/msg00012.html

Third Party Advisory

Mailing List

http://packetstormsecurity.com/files/165477/Kernel-Live-Patch-Security-Notice-LSN-0083-1.html

Third Party Advisory

Exploit

VDB Entry

https://bugzilla.redhat.com/show_bug.cgi?id=1983686

Patch

Third Party Advisory

Issue Tracking

https://www.openwall.com/lists/oss-security/2021/08/16/1

Patch

Third Party Advisory

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2021-3653

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-3653

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-3653

EUVD