CVE-2021-22555

CVE Published	2021-07-07
Related CWE(s)	CWE-787: Out-of-bounds Write
Related Vendor(s)	linux, netapp, brocade
Related Product(s)	fabric_operating_system, linux_kernel, h610c_firmware, solidfire, h610s_firmware, h615c_firmware, aff_500f_firmware, fas_8300_firmware, hci_management_node, aff_a400_firmware, fas_8700_firmware, aff_a250_firmware
CVSS 3 Base Score	7.8 (HIGH)
CVSS 3 Attack Complexity	LOW
CVSS 3 Attack Vector	LOCAL

A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space

Cyber Threat Graph Context

Explore how this CVE relates to the wider threat graph

Threat Reports Related to CVE-2021-22555

Report

Earth Krahang Exploits Intergovernmental Trust to Launch Cross-Government Attacks

This article by researchers at Trend Micro discusses an Advanced Persistent Threat (APT) group they name Earth Krahang who have been observed ...

View Source

References

CVE.org

View more information about CVE-2021-22555 on the official MITRE CVE website.

NIST National Vulnerability Database

CVE-2021-22555 on the NIST NVD.