Vulnerabilities > CVE-2021-4203

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
HIGH
network
high complexity
linux
netapp
oracle

Summary

A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information.

Vulnerable Configurations

Part Description Count
OS
Linux
4982
OS
Netapp
7
Application
Netapp
21
Application
Oracle
3
Hardware
Netapp
7