CVE-2021-3772

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.

Published: Mar 3, 2022
Updated: Apr 14, 2023
CVE: CVE-2021-3772
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H

CVSS v2:

Severity: Medium
Score: 5.8
AV:N/AC:M/Au:N/C:N/I:P/A:P

CWEs:

CWE-354

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	-	5.15.0
redhat / enterprise_linux	8.0	8.0.x
debian / debian_linux	9.0	9.0.x
debian / debian_linux	10.0	10.0.x
oracle / communications_cloud_native_core_binding_support_function	22.1.3	22.1.3.x
oracle / communications_cloud_native_core_policy	22.2.0	22.2.0.x
oracle / communications_cloud_native_core_network_exposure_function	22.1.1	22.1.1.x
netapp / e-series_santricity_os_controller	11.0	11.0.x
netapp / e-series_santricity_os_controller	11.0.0	11.0.0.x
netapp / e-series_santricity_os_controller	11.20	11.20.x
netapp / e-series_santricity_os_controller	11.25	11.25.x
netapp / e-series_santricity_os_controller	11.30	11.30.x
netapp / e-series_santricity_os_controller	11.30.5r3	11.30.5r3.x
netapp / e-series_santricity_os_controller	11.40	11.40.x
netapp / e-series_santricity_os_controller	11.40.3r2	11.40.3r2.x
netapp / e-series_santricity_os_controller	11.40.5	11.40.5.x
netapp / e-series_santricity_os_controller	11.50.1	11.50.1.x
netapp / e-series_santricity_os_controller	11.50.2	11.50.2.x
netapp / e-series_santricity_os_controller	11.50.2-p1	11.50.2-p1.x
netapp / e-series_santricity_os_controller	11.60	11.60.x
netapp / e-series_santricity_os_controller	11.60.0	11.60.0.x
netapp / e-series_santricity_os_controller	11.60.1	11.60.1.x
netapp / e-series_santricity_os_controller	11.60.3	11.60.3.x
netapp / e-series_santricity_os_controller	11.70.1	11.70.1.x
netapp / e-series_santricity_os_controller	11.70.2	11.70.2.x

Vulnerability Database

289,599

CVE-2021-3772