Language:
https://cwe.mitre.org/data/definitions/77.html
https://cwe.mitre.org/data/definitions/119.html
https://cwe.mitre.org/data/definitions/362.html
https://cwe.mitre.org/data/definitions/787.html
https://cwe.mitre.org/data/definitions/863.html
https://access.redhat.com/security/cve/CVE-2021-3609
https://access.redhat.com/security/cve/CVE-2021-3621
https://access.redhat.com/security/cve/CVE-2021-22543
https://access.redhat.com/security/cve/CVE-2021-22555
https://access.redhat.com/security/cve/CVE-2021-38575
https://access.redhat.com/errata/RHSA-2021:3235
https://bugzilla.redhat.com/1956284
https://bugzilla.redhat.com/1965461
https://bugzilla.redhat.com/1971651
Severity: High
ID: 152688
File Name: redhat-RHSA-2021-3235.nasl
Version: 1.7
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 8/19/2021
Updated: 1/10/2022
Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent
CVSS Score Source: CVE-2021-3621
Risk Factor: Critical
Score: 9.7
Risk Factor: High
Base Score: 9.3
Temporal Score: 8.1
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Temporal Vector: E:H/RL:OF/RC:C
Risk Factor: High
Base Score: 8.8
Temporal Score: 8.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: E:H/RL:O/RC:C
CPE: cpe:/o:redhat:enterprise_linux:8, p-cpe:/a:redhat:enterprise_linux:imgbased, p-cpe:/a:redhat:enterprise_linux:python3-imgbased, p-cpe:/a:redhat:enterprise_linux:redhat-release-virtualization-host, p-cpe:/a:redhat:enterprise_linux:redhat-virtualization-host-image-update, p-cpe:/a:redhat:enterprise_linux:redhat-virtualization-host-image-update-placeholder
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/19/2021
Vulnerability Publication Date: 4/20/2021
Metasploit (Netfilter x_tables Heap OOB Write Privilege Escalation)
CVE: CVE-2021-3609, CVE-2021-3621, CVE-2021-22543, CVE-2021-22555