Lucene search

K
cvelistRedhatCVELIST:CVE-2021-3923
HistoryMar 27, 2023 - 12:00 a.m.

CVE-2021-3923

2023-03-2700:00:00
CWE-200
redhat
www.cve.org
8
linux kernel
rdma
infiniband
privileged account
kernel stack
information leak

AI Score

5.1

Confidence

Low

EPSS

0

Percentile

9.0%

A flaw was found in the Linux kernel’s implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdma_cm device node. While this access is unlikely to leak sensitive user information, it can be further used to defeat existing kernel protection mechanisms.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "kernel",
    "versions": [
      {
        "version": "unknown",
        "status": "affected"
      }
    ]
  }
]

AI Score

5.1

Confidence

Low

EPSS

0

Percentile

9.0%