HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2021-3609

CVSS 7.0v3.1pub. 2022-03-03upd. 2024-11-21

.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Linux Kernel

    OS
    Linux
    2.6.25 – 4.4.276 (bez)4.5 – 4.9.276 (bez)4.10 – 4.14.240 (bez)4.15 – 4.19.198 (bez)4.20 – 5.4.132 (bez)5.5.0 – 5.10.50 (bez)5.11 – 5.12.17 (bez)5.13 – 5.13.2 (bez)
  • Netapp H300e

    HW
    Netapp
    wszystkie wersje
  • Netapp H300e Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H300s

    HW
    Netapp
    wszystkie wersje
  • Netapp H300s Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H410c

    HW
    Netapp
    wszystkie wersje
  • Netapp H410c Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H410s

    HW
    Netapp
    wszystkie wersje
  • Netapp H410s Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H500e

    HW
    Netapp
    wszystkie wersje
  • Netapp H500e Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H500s

    HW
    Netapp
    wszystkie wersje
  • Netapp H500s Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H610c

    HW
    Netapp
    wszystkie wersje
  • Netapp H610c Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H610s

    HW
    Netapp
    wszystkie wersje
  • Netapp H610s Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H615c

    HW
    Netapp
    wszystkie wersje
  • Netapp H615c Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H700e

    HW
    Netapp
    wszystkie wersje
  • Netapp H700e Firmware

    OS
    Netapp
    wszystkie wersje
  • Netapp H700s

    HW
    Netapp
    wszystkie wersje
  • Netapp H700s Firmware

    OS
    Netapp
    wszystkie wersje
  • Red Hat 3scale Api Management

    APP
    Redhat
    2.0
  • Red Hat Build Of Quarkus

    APP
    Redhat
    1.0
  • Red Hat Codeready Linux Builder Eus

    APP
    Redhat
    8.18.28.4
  • Red Hat Codeready Linux Builder For Power Little Endian Eus

    APP
    Redhat
    8.18.28.4
  • Red Hat Enterprise Linux Aus

    OS
    Redhat
    8.2
  • Red Hat Enterprise Linux Eus

    OS
    Redhat
    8.18.28.4
  • Red Hat Enterprise Linux For IBM Z Systems Eus

    OS
    Redhat
    8.4
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
LPERace Condition
CWE
References

Related vulnerabilities

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2025-34028CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP

CVE-2024-54085CRITICAL10.0⚠ KEVPL ✓ten sam produkt

AMI MegaRAC SPx — zdalne ominięcie uwierzytelnienia w interfejsie Redfish BMC

CVE-2022-47986CRITICAL9.8⚠ KEVten sam produkt

IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on t...

CVE-2022-22954CRITICAL9.8⚠ KEVten sam produkt

VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-s...