CVE-2021-47135

EPSS 0.02%
Veröffentlicht 15.03.2024 21:15:07
Zuletzt bearbeitet 27.02.2025 03:20:09
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

mt76: mt7921: fix possible AOOB issue in mt7921_mcu_tx_rate_report

Fix possible array out of bound access in mt7921_mcu_tx_rate_report.
Remove unnecessary varibable in mt7921_mcu_tx_rate_report

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.12 < 5.12.10

Linux ≫ Linux Kernel Version5.13 Updaterc1

Linux ≫ Linux Kernel Version5.13 Updaterc2

Linux ≫ Linux Kernel Version5.13 Updaterc3

Linux ≫ Linux Kernel Version5.13 Updaterc4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.029

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-129 Improper Validation of Array Index

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

https://git.kernel.org/stable/c/6919e8a24e70b6ba148fe07f44f835bcdd1a8d02

Patch

https://git.kernel.org/stable/c/d874e6c06952382897d35bf4094193cd44ae91bd

Patch

https://nvd.nist.gov/vuln/detail/CVE-2021-47135

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-47135

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-47135

EUVD