Design/Logic Flaw

2022-03-0223:15:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.

CPENameOperatorVersion
debian_linuxeq9.0
debian_linuxeq10.0
linux_kernellt5.15.0
e-series_santricity_os_controllereq11.0
e-series_santricity_os_controllereq11.0.0
e-series_santricity_os_controllereq11.20
e-series_santricity_os_controllereq11.25
e-series_santricity_os_controllereq11.30
e-series_santricity_os_controllereq11.30.5-r3
e-series_santricity_os_controllereq11.40

Name	Operator	Version
debian_linux	eq	9.0
debian_linux	eq	10.0
linux_kernel	lt	5.15.0
e-series_santricity_os_controller	eq	11.0
e-series_santricity_os_controller	eq	11.0.0
e-series_santricity_os_controller	eq	11.20
e-series_santricity_os_controller	eq	11.25
e-series_santricity_os_controller	eq	11.30
e-series_santricity_os_controller	eq	11.30.5-r3
e-series_santricity_os_controller	eq	11.40