CVE-2021-3573medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
A use-after-free in function hci_sock_bound_ioctl() of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hci_unregister_dev() together with one of the calls hci_sock_blacklist_add(), hci_sock_blacklist_del(), hci_get_conn_info(), hci_get_auth_info(). A privileged local user could use this flaw to crash the system or escalate their privileges on the system. This flaw affects the Linux kernel versions prior to 5.13-rc5.
References
Details
Source: MITRE
Published: 2021-08-13
Updated: 2021-08-24
Type: CWE-362
Risk Information
CVSS v2
Base Score: 6.9
Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 3.4
Severity: MEDIUM
CVSS v3
Base Score: 6.4
Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 0.5
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.13:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.13:rc2:*:*:*:*:*:*
Configuration 2
OR
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Configuration 3
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 155425 | Oracle Linux 8 : kernel (ELSA-2021-4356) | Nessus | Oracle Linux Local Security Checks | high |
| 155219 | RHEL 8 : kernel (RHSA-2021:4356) | Nessus | Red Hat Local Security Checks | high |
| 155172 | RHEL 8 : kernel-rt (RHSA-2021:4140) | Nessus | Red Hat Local Security Checks | high |
| 155145 | CentOS 8 : kernel (CESA-2021:4356) | Nessus | CentOS Local Security Checks | high |
| 155070 | CentOS 8 : kernel-rt (CESA-2021:4140) | Nessus | CentOS Local Security Checks | high |
| 154404 | EulerOS 2.0 SP3 : kernel (EulerOS-SA-2021-2588) | Nessus | Huawei Local Security Checks | high |
| 154210 | SUSE SLES12 Security Update : kernel (Live Patch 39 for SLE 12 SP3) (SUSE-SU-2021:3459-1) | Nessus | SuSE Local Security Checks | high |
| 154165 | Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9485) | Nessus | Oracle Linux Local Security Checks | high |
| 154163 | Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9488) | Nessus | Oracle Linux Local Security Checks | high |
| 154161 | SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 16 for SLE 12 SP5) (SUSE-SU-2021:3443-1) | Nessus | SuSE Local Security Checks | high |
| 154160 | SUSE SLES15 Security Update : kernel (Live Patch 21 for SLE 15) (SUSE-SU-2021:3440-1) | Nessus | SuSE Local Security Checks | high |
| 154129 | SUSE SLES15 Security Update : kernel (Live Patch 23 for SLE 15) (SUSE-SU-2021:3401-1) | Nessus | SuSE Local Security Checks | high |
| 154095 | SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 17 for SLE 15 SP2) (SUSE-SU-2021:3374-1) | Nessus | SuSE Local Security Checks | high |
| 154092 | SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 18 for SLE 15 SP2) (SUSE-SU-2021:3361-1) | Nessus | SuSE Local Security Checks | medium |
| 154073 | SUSE SLES15 Security Update : kernel (Live Patch 25 for SLE 15) (SUSE-SU-2021:3371-1) | Nessus | SuSE Local Security Checks | high |
| 154068 | SUSE SLES15 Security Update : kernel (Live Patch 0 for SLE 15 SP3) (SUSE-SU-2021:3360-1) | Nessus | SuSE Local Security Checks | high |
| 153567 | Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9458) | Nessus | Oracle Linux Local Security Checks | high |
| 153559 | Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9460) | Nessus | Oracle Linux Local Security Checks | high |
| 153443 | Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9451) | Nessus | Oracle Linux Local Security Checks | medium |
| 153442 | Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9450) | Nessus | Oracle Linux Local Security Checks | medium |
| 153271 | EulerOS 2.0 SP2 : kernel (EulerOS-SA-2021-2392) | Nessus | Huawei Local Security Checks | high |
| 153080 | EulerOS 2.0 SP5 : kernel (EulerOS-SA-2021-2336) | Nessus | Huawei Local Security Checks | high |
| 152774 | Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-5050-1) | Nessus | Ubuntu Local Security Checks | medium |
| 152665 | Ubuntu 20.04 LTS / 21.04 : Linux kernel vulnerabilities (USN-5046-1) | Nessus | Ubuntu Local Security Checks | medium |
| 152640 | Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-5044-1) | Nessus | Ubuntu Local Security Checks | medium |
| 152639 | Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-5045-1) | Nessus | Ubuntu Local Security Checks | medium |
| 151996 | SUSE SLES15 Security Update : kernel (SUSE-SU-2021:2426-1) | Nessus | SuSE Local Security Checks | high |
| 151921 | Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-5015-1) | Nessus | Ubuntu Local Security Checks | high |
| 151897 | Slackware 14.2 : Slackware 14.2 kernel (SSA:2021-202-01) | Nessus | Slackware Local Security Checks | high |
| 151793 | Amazon Linux 2 : kernel (ALAS-2021-1685) | Nessus | Amazon Linux Local Security Checks | medium |
| 151760 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2021:2352-1) | Nessus | SuSE Local Security Checks | medium |
| 151754 | openSUSE 15 Security Update : kernel (openSUSE-SU-2021:2305-1) | Nessus | SuSE Local Security Checks | medium |
| 151691 | openSUSE 15 Security Update : kernel (openSUSE-SU-2021:2352-1) | Nessus | SuSE Local Security Checks | medium |
| 151652 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2021:2325-1) | Nessus | SuSE Local Security Checks | high |
| 151617 | SUSE SLES15 Security Update : kernel (SUSE-SU-2021:2303-1) | Nessus | SuSE Local Security Checks | high |
| 151616 | SUSE SLES15 Security Update : kernel (SUSE-SU-2021:2305-1) | Nessus | SuSE Local Security Checks | medium |
| 150985 | Debian DLA-2689-1 : linux security update | Nessus | Debian Local Security Checks | high |
| 150984 | Debian DLA-2690-1 : linux-4.19 security update | Nessus | Debian Local Security Checks | high |
| 150445 | Photon OS 3.0: Linux PHSA-2021-3.0-0251 | Nessus | PhotonOS Local Security Checks | medium |
| 150443 | Photon OS 4.0: Linux PHSA-2021-4.0-0041 | Nessus | PhotonOS Local Security Checks | medium |