Vulnerabilities > CVE-2021-43975 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 6.7 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH

Summary

In the Linux kernel through 5.15.2, hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c allows an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value.

Vulnerable Configurations

Part Description Count
OS
Linux
4986
OS
Fedoraproject
2
OS
Debian
2
OS
Netapp
7
Application
Netapp
1
Hardware
Netapp
7

Common Weakness Enumeration (CWE)