Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2021-3609

.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.

  • Published: Mar 3, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2021-3609
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7
  • AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: Medium
  • Score: 6.9
  • AV:L/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
redhat / virtualization_host 4.0 4.0.x
redhat / virtualization 4.0 4.0.x
redhat / enterprise_linux_eus 8.1 8.1.x
redhat / enterprise_linux_eus 8.2 8.2.x
redhat / enterprise_linux_server_tus 8.2 8.2.x
redhat / enterprise_linux_server_aus 8.2 8.2.x
redhat / enterprise_linux_aus 8.2 8.2.x
redhat / openshift_container_platform 4.6 4.6.x
redhat / 3scale_api_management 2.0 2.0.x
redhat / openshift_container_platform 4.7 4.7.x
redhat / enterprise_linux_server_tus 8.4 8.4.x
redhat / enterprise_linux_eus 8.4 8.4.x
redhat / enterprise_linux_for_real_time_for_nfv_tus 8.2 8.2.x
redhat / enterprise_linux_for_real_time_tus 8.2 8.2.x
redhat / enterprise_linux_server_aus 8.4 8.4.x
redhat / enterprise_linux_server_update_services_for_sap_solutions 8.2 8.2.x
redhat / enterprise_linux_server_update_services_for_sap_solutions 8.4 8.4.x
redhat / enterprise_linux_server_update_services_for_sap_solutions 8.1 8.1.x
redhat / enterprise_linux_for_power_little_endian_eus 8.2 8.2.x
redhat / enterprise_linux_for_power_little_endian_eus 8.1 8.1.x
redhat / enterprise_linux_for_ibm_z_systems_eus 8.4 8.4.x
redhat / enterprise_linux_for_power_little_endian_eus 8.4 8.4.x
redhat / openshift_container_platform 4.8 4.8.x
redhat / enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 8.1 8.1.x
redhat / enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 8.2 8.2.x
redhat / enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 8.4 8.4.x
redhat / enterprise_linux_for_ibm_z_systems_eus_s390x 8.1 8.1.x
redhat / enterprise_linux_for_real_time 8.0 8.0.x
redhat / build_of_quarkus 1.0 1.0.x
redhat / enterprise_linux_for_real_time_for_nfv 8.0 8.0.x
redhat / enterprise_linux_for_real_time_tus 8.0 8.0.x
redhat / enterprise_linux_for_real_time_for_nfv_tus 8.0 8.0.x
redhat / codeready_linux_builder_eus 8.1 8.1.x
redhat / codeready_linux_builder_eus 8.2 8.2.x
redhat / codeready_linux_builder_eus 8.4 8.4.x
redhat / codeready_linux_builder_for_power_little_endian_eus 8.1 8.1.x
redhat / codeready_linux_builder_for_power_little_endian_eus 8.2 8.2.x
redhat / codeready_linux_builder_for_power_little_endian_eus 8.4 8.4.x
linux / linux_kernel 4.5 4.9.276
linux / linux_kernel 4.10 4.14.240
linux / linux_kernel 4.15 4.19.198
linux / linux_kernel 5.13 5.13.2
linux / linux_kernel 5.11 5.12.17
linux / linux_kernel 4.20 5.4.132
linux / linux_kernel 5.5.0 5.10.50
linux / linux_kernel 2.6.25 4.4.276