Vulnerability in Linux Linux_kernel
CVE-2021-20322
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectiv…
EPSS: 0.067 (93.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.4 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N.
Affected products
- Linux Linux_kernel
- Netapp Active_iq_unified_manager
- Netapp Aff_a700s
- Netapp Aff_a700s_firmware
- Netapp Aff_baseboard_management_controller — versions a400
- Netapp Aff_baseboard_management_controller_firmware
- Netapp E-series_santricity_os_controller
- Netapp Fas_baseboard_management_controller — versions 8300, 8700
- Netapp Fas_baseboard_management_controller_firmware
- Netapp H300e
Weakness classification (CWE)
Public proof-of-concept exploits
References
- secalert@redhat.com (Third Party Advisory, x_refsource_MISC, Issue Tracking)
- secalert@redhat.com (Patch, Mailing List, x_refsource_MISC, Vendor Advisory)
- secalert@redhat.com (Patch, Mailing List, x_refsource_MISC, Vendor Advisory)
- secalert@redhat.com (Patch, Mailing List, x_refsource_MISC, Vendor Advisory)
- secalert@redhat.com (Patch, Mailing List, x_refsource_MISC, Vendor Advisory)
- secalert@redhat.com (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
- secalert@redhat.com (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
- secalert@redhat.com (Third Party Advisory, x_refsource_MISC)
- secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
Frequently asked questions
- What is CVE-2021-20322?
- CVE-2021-20322 is a high-severity vulnerability in Linux Linux_kernel, classified under Use of Insufficiently Random Values. CVSS score: 7.4/10. Published 2022-02-18.
- How severe is CVE-2021-20322?
- High severity. CVSS v3 base score is 7.4 out of 10.
- Is CVE-2021-20322 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.