Lucene search

K

[email protected]NVD:CVE-2021-3659

HistoryAug 22, 2022 - 3:15 p.m.

CVE-2021-3659

2022-08-2215:15:13

CWE-476

CWE-252

[email protected]

web.nvd.nist.gov

linux kernel

ieee 802.15.4

wireless networking

null pointer

system availability

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user closes the LR-WPAN connection. This flaw allows a local user to crash the system. The highest threat from this vulnerability is to system availability.

Affected configurations

NVD

Node

linuxlinux_kernelRange<5.12

Node

fedoraprojectfedoraMatch34

Node

redhatenterprise_linuxMatch7.0

OR

redhatenterprise_linuxMatch8.0

OR

redhatenterprise_linux_for_ibm_z_systemsMatch8.0

OR

redhatenterprise_linux_for_ibm_z_systems_eusMatch8.6

OR

redhatenterprise_linux_for_power_little_endian_eusMatch8.6

OR

redhatenterprise_linux_for_real_timeMatch8.0

OR

redhatenterprise_linux_for_real_time_for_nfvMatch8.0

OR

redhatenterprise_linux_for_real_time_for_nfv_tusMatch8.6

OR

redhatenterprise_linux_for_real_time_tusMatch8.6

OR

redhatenterprise_linux_server_ausMatch8.6

OR

redhatenterprise_linux_server_eusMatch8.6

OR

redhatenterprise_linux_server_tusMatch8.6

Node

redhatenterprise_linuxMatch8.0

OR

redhatenterprise_linux_eusMatch8.6

OR

redhatenterprise_linux_for_power_little_endianMatch8.0

OR

redhatenterprise_linux_for_power_little_endian_eusMatch8.6

AND

redhatcodeready_linux_builderMatch-

Node

redhatenterprise_linuxMatch8.0

AND

redhatvirtualization_hostMatch4.0

References

access.redhat.com/security/cve/CVE-2021-3659

bugzilla.redhat.com/show_bug.cgi?id=1975949

git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1165affd484889d4986cf3b724318935a0b120d8

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

Related for NVD:CVE-2021-3659

cbl_mariner1 debiancve1 prion1 cvelist1 cnvd1 ubuntucve1 veracode1 osv5 redhatcve1 cve1 openvas20 nessus28 suse4 almalinux1 oraclelinux1 redhat4 ubuntu3