Lucene search

K
attackerkbAttackerKBAKB:6BA1EA9C-84D0-4A70-A858-8D5FCC65962D
HistoryJul 20, 2021 - 12:00 a.m.

CVE-2021-33909

2021-07-2000:00:00
attackerkb.com
121

0.002 Low

EPSS

Percentile

55.0%

fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.

Recent assessments:

NinjaOperator at July 20, 2021 11:38pm UTC reported:

An unprivileged local attacker can exploit this vulnerability by creating, mounting, and deleting a deep directory structure whose total path length exceeds 1GB, and also escalate privileges.

<https://www.helpnetsecurity.com/2021/07/20/cve-2021-33909/&gt;

wvu-r7 at July 23, 2021 5:43am UTC reported:

An unprivileged local attacker can exploit this vulnerability by creating, mounting, and deleting a deep directory structure whose total path length exceeds 1GB, and also escalate privileges.

<https://www.helpnetsecurity.com/2021/07/20/cve-2021-33909/&gt;

gwillcox-r7 at July 27, 2021 12:16am UTC reported:

An unprivileged local attacker can exploit this vulnerability by creating, mounting, and deleting a deep directory structure whose total path length exceeds 1GB, and also escalate privileges.

<https://www.helpnetsecurity.com/2021/07/20/cve-2021-33909/&gt;

Assessed Attacker Value: 4
Assessed Attacker Value: 4Assessed Attacker Value: 4

References