CVE-2021-3492

AST

HighConfirmedExploit available

Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_us…

CVSS

7.8

High

EPSS

0.24

p96

Published

2021-01-01

Updated

2021-01-01

Description

Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_user() correctly. These could lead to either a double-free situation or memory not being freed at all. An attacker could use this to cause a denial of service (kernel memory exhaustion) or gain privileges via executing arbitrary code. AKA ZDI-CAN-13562.

Tags · CWE

CWE-400

CWE-401

CAPEC-147

CAPEC-227

CAPEC-492

Affected products

LinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinuxLinux-allwinnerLinux-allwinnerLinux-allwinner-5.19

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Timeline

2021-01-01

Published

2021-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: L

Local (L)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: L

Low (L)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: H

High (H)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.244 · p96

Known exploited (KEV)

MITRE ATT&CK

Inferred via CAPEC

T1499Endpoint Denial of Service

└ via CAPEC-227 · CWE-400

Known exploits — Сканер-ВС

CVE-2021-3492

github-poc · https://github.com/synacktiv/CVE-2021-3492

Enterprise

Affected software

Product	Vendor	Status
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux		Tracked
linux-allwinner		Tracked
linux-allwinner		Tracked
linux-allwinner-5.19		Tracked

Source databases

AST

DEB

CVE

UBU

Related vulnerabilities

BDU:2021-04860