CVE-2021-3348

Severity

Theme

CVE-2021-3348

high

New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

nbd_add_socket in drivers/block/nbd.c in the Linux kernel through 5.10.12 has an ndb_queue_rq use-after-free that could be triggered by local attackers (with access to the nbd device) via an I/O request at a certain point during device setup, aka CID-b98e762e3d71.

References

http://www.openwall.com/lists/oss-security/2021/02/01/1

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b98e762e3d71e893b221f871825dc64694cfb258

https://lists.debian.org/debian-lts-announce/2021/03/msg00035.html

https://www.openwall.com/lists/oss-security/2021/01/28/3

Details

Source: MITRE

Published: 2021-02-01

Updated: 2021-03-31

Type: CWE-362

Risk Information

CVSS v2

Base Score: 4.4

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.4

Severity: MEDIUM

CVSS v3

Base Score: 7

Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1

Severity: HIGH

Vulnerable Software

Configuration 1

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 5.10.12 (inclusive)

Tenable Plugins

View all (27 total)

ID	Name	Product	Family	Severity
151167	EulerOS Virtualization for ARM 64 3.0.6.0 : kernel (EulerOS-SA-2021-2002)	Nessus	Huawei Local Security Checks	high
150214	EulerOS 2.0 SP9 : kernel (EulerOS-SA-2021-1929)	Nessus	Huawei Local Security Checks	high
150213	EulerOS 2.0 SP9 : kernel (EulerOS-SA-2021-1950)	Nessus	Huawei Local Security Checks	high
149607	EulerOS 2.0 SP8 : kernel (EulerOS-SA-2021-1879)	Nessus	Huawei Local Security Checks	high
148634	EulerOS Virtualization 2.9.1 : kernel (EulerOS-SA-2021-1715)	Nessus	Huawei Local Security Checks	high
148604	EulerOS Virtualization 2.9.0 : kernel (EulerOS-SA-2021-1751)	Nessus	Huawei Local Security Checks	high
148497	Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-4909-1)	Nessus	Ubuntu Local Security Checks	high
148493	Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4907-1)	Nessus	Ubuntu Local Security Checks	high
148492	Ubuntu 20.04 LTS / 20.10 : Linux kernel vulnerabilities (USN-4910-1)	Nessus	Ubuntu Local Security Checks	high
148350	Photon OS 4.0: Linux PHSA-2021-4.0-0007	Nessus	PhotonOS Local Security Checks	high
148254	Debian DLA-2610-1 : linux-4.19 security update	Nessus	Debian Local Security Checks	high
147973	Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-4884-1)	Nessus	Ubuntu Local Security Checks	high
147588	EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2021-1386)	Nessus	Huawei Local Security Checks	high
147454	SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0739-1)	Nessus	SuSE Local Security Checks	high
147452	SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0742-1)	Nessus	SuSE Local Security Checks	high
147205	Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9087)	Nessus	Oracle Linux Local Security Checks	high
147204	Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9085)	Nessus	Oracle Linux Local Security Checks	high
147203	Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9086)	Nessus	Oracle Linux Local Security Checks	high
147202	Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9084)	Nessus	Oracle Linux Local Security Checks	high
146685	SUSE SLES15 Security Update : kernel (SUSE-SU-2021:0532-1)	Nessus	SuSE Local Security Checks	high
146631	Amazon Linux 2 : kernel (ALAS-2021-1600)	Nessus	Amazon Linux Local Security Checks	high
146569	Amazon Linux AMI : kernel (ALAS-2021-1480)	Nessus	Amazon Linux Local Security Checks	high
146474	SUSE SLES15 Security Update : kernel (SUSE-SU-2021:0438-1)	Nessus	SuSE Local Security Checks	high
146470	SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0434-1)	Nessus	SuSE Local Security Checks	high
146406	SUSE SLES15 Security Update : kernel (SUSE-SU-2021:0427-1)	Nessus	SuSE Local Security Checks	high
146366	SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2021:0354-1)	Nessus	SuSE Local Security Checks	high
146293	openSUSE Security Update : the Linux Kernel (openSUSE-2021-241)	Nessus	SuSE Local Security Checks	high