Vulnerabilities > CVE-2021-3612 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH

Summary

An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Vulnerable Configurations

Part Description Count
OS
Linux
4469
OS
Redhat
2
OS
Fedoraproject
1
OS
Debian
1
OS
Netapp
9
Application
Oracle
3
Application
Netapp
1
Hardware
Netapp
9

Common Weakness Enumeration (CWE)