Lucene search

[email protected]CVE-2021-27363

HistoryMar 07, 2021 - 4:15 a.m.

CVE-2021-27363

2021-03-0704:15:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

349

linux kernel

issue

kernel pointer leak

cve-2021-27363

security vulnerability

nvd

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

5.6 Medium

AI Score

Confidence

High

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:N/A:P

0.001 Low

EPSS

Percentile

24.6%

JSON

An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport’s handle is available to unprivileged users via the sysfs file system, at /sys/class/iscsi_transport/$TRANSPORT_NAME/handle. When read, the show_transport_handle function (in drivers/scsi/scsi_transport_iscsi.c) is called, which leaks the handle. This handle is actually the pointer to an iscsi_transport struct in the kernel module’s global variables.

CPENameOperatorVersion
linux:linux_kernellinux linux kernelle5.11.3
debian:debian_linuxdebian debian linuxeq9.0
netapp:cloud_backupnetapp cloud backupeq-
netapp:solidfire_baseboard_management_controller_firmwarenetapp solidfire baseboard management controller firmwareeq-

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	le	5.11.3
debian:debian_linux	debian debian linux	eq	9.0
netapp:cloud_backup	netapp cloud backup	eq	-
netapp:solidfire_baseboard_management_controller_firmware	netapp solidfire baseboard management controller firmware	eq	-