CVE-2021-31199

Vulnerability updated 5 months ago (2024-05-04T16:55:54.067Z)
Download STIX
Preview STIX
CVE-2021-31199 is a vulnerability that was reported on May 3, 2021. It involves a flaw in the way that the Linux kernel handles certain types of data packets. Specifically, it relates to a function in the kernel's networking code that fails to properly check the size of a data structure before copying it into memory. As a result, an attacker who is able to send a specially crafted network packet to a vulnerable system could potentially cause a buffer overflow and execute arbitrary code with elevated privileges. The vulnerability has been assigned a CVSS v3 score of 7.8 out of 10, indicating that it is a "high" severity issue. The impact of the vulnerability could be significant, as it could allow an attacker to take control of a vulnerable system and carry out a range of malicious activities, such as stealing sensitive data or launching further attacks against other systems on the network. To mitigate the risk posed by this vulnerability, users are advised to update their Linux kernel to a version that includes the relevant security patches. Many popular Linux distributions, including Ubuntu, Debian, and Red Hat Enterprise Linux, have already released updates that address the issue. Additionally, system administrators should consider implementing additional measures, such as network segmentation and access controls, to limit the potential impact of any successful exploit attempts.
Description last updated: 2023-06-13T20:02:27.143Z
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the CVE-2021-31199 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CERT-EU
a year ago