Vulnerabilities > Linux

DATE CVE VULNERABILITY TITLE RISK
2021-07-21 CVE-2021-37159 USE After Free vulnerability in Linux Kernel
hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.
local
low complexity
linux CWE-416
4.6
2021-07-20 CVE-2021-33909 Classic Buffer Overflow vulnerability in multiple products
fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.
local
low complexity
linux fedoraproject debian CWE-120
7.2
2021-07-09 CVE-2021-3612 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the way the user calls ioctl JSIOCSBTNMAP.
local
low complexity
linux redhat fedoraproject CWE-119
7.2
2021-07-08 CVE-2021-25433 Incorrect Authorization vulnerability in Linux Tizen
Improper authorization vulnerability in Tizen factory reset policy prior to Firmware update JUL-2021 Release allows untrusted applications to perform factory reset using dbus signal.
local
low complexity
linux CWE-863
2.1
2021-07-08 CVE-2021-25434 Improper Input Validation vulnerability in Linux Tizen
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using param partition in wireless firmware download mode.
network
low complexity
linux CWE-20
7.5
2021-07-08 CVE-2021-25435 Improper Input Validation vulnerability in Linux Tizen
Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using recovery partition in wireless firmware download mode.
network
low complexity
linux CWE-20
7.5
2021-07-08 CVE-2021-25436 Improper Input Validation vulnerability in Linux Tizen
Improper input validation vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows arbitrary code execution via Samsung Accessory Protocol.
network
low complexity
linux CWE-20
7.5
2021-07-08 CVE-2021-25437 Incorrect Authorization vulnerability in Linux Tizen
Improper access control vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows attackers to arbitrary code execution by replacing FOTA update file.
network
low complexity
linux CWE-863
7.5
2021-07-07 CVE-2021-22555 Out-Of-Bounds Write vulnerability in Linux Kernel
A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c.
local
low complexity
linux CWE-787
4.6
2021-07-07 CVE-2021-35039 Improper Verification of Cryptographic Signature vulnerability in Linux Kernel
kernel/module.c in the Linux kernel before 5.12.14 mishandles Signature Verification, aka CID-0c18f29aae7c.
local
linux CWE-347
6.9