Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2015-1421
HistoryMar 16, 2015 - 10:59 a.m.

CVE-2015-1421

2015-03-1610:59:06
[email protected]
web.nvd.nist.gov
1

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

High

0.061 Low

EPSS

Percentile

93.6%

JSON

Use-after-free vulnerability in the sctp_assoc_update function in net/sctp/associola.c in the Linux kernel before 3.18.8 allows remote attackers to cause a denial of service (slab corruption and panic) or possibly have unspecified other impact by triggering an INIT collision that leads to improper handling of shared-key data.

Affected configurations

NVD
Node
linuxlinux_kernelRange2.6.243.2.67
OR
linuxlinux_kernelRange3.33.4.107
OR
linuxlinux_kernelRange3.53.10.70
OR
linuxlinux_kernelRange3.113.12.38
OR
linuxlinux_kernelRange3.133.14.34
OR
linuxlinux_kernelRange3.153.16.35
OR
linuxlinux_kernelRange3.173.18.8
Node
canonicalubuntu_linuxMatch12.04-
OR
canonicalubuntu_linuxMatch14.04esm
OR
canonicalubuntu_linuxMatch14.10
Node
debiandebian_linuxMatch7.0
OR
debiandebian_linuxMatch8.0

References

Related

f5 2
nessus 37
openvas 44
veracode 1
suse 5
debiancve 1
cve 1
ubuntucve 1
prion 1
redhat 7
cvelist 1
oraclelinux 6
centos 2
ubuntu 6
mageia 4
ibm 1
debian 2
securityvulns 2
osv 2
fedora 14
f5
f5
SOL17242 - Linux kernel SCTP vulnerability CVE-2015-1421
2015-09-09 00:00:00
K17242 : Linux kernel SCTP vulnerability CVE-2015-1421
2015-09-10 00:00:00
nessus
nessus
F5 Networks BIG-IP : Linux kernel SCTP vulnerability (K17242)
2015-09-10 00:00:00
RHEL 6 : kernel (RHSA-2015:1030)
2015-05-27 00:00:00
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3021)
2015-04-01 00:00:00
openvas
openvas
F5 BIG-IP - Linux kernel SCTP vulnerability CVE-2015-1421
2015-09-18 00:00:00
Oracle: Security Advisory (ELSA-2015-3021)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2015-0726)
2015-10-06 00:00:00
veracode
veracode
Use-After-Free
2019-05-02 05:12:51
suse
suse
Security update for kgraft-patch-SLE12_Update_1, kgraft-patch-SLE12_Update_2 (important)
2015-05-07 20:04:53
Security update for Linux Kernel (important)
2015-04-13 14:04:48
Security update for the Real Time Linux Kernel (important)
2015-08-12 19:09:18
debiancve
debiancve
CVE-2015-1421
2015-03-16 10:59:06
cve
cve
CVE-2015-1421
2015-03-16 10:59:06
ubuntucve
ubuntucve
CVE-2015-1421
2015-03-16 00:00:00
prion
prion
Design/Logic Flaw
2015-03-16 10:59:00
redhat
redhat
(RHSA-2015:1030) Important: kernel security and bug fix update
2015-05-27 00:00:00
(RHSA-2015:1082) Important: kernel security update
2015-06-09 00:00:00
(RHSA-2015:0726) Important: kernel security and bug fix update
2015-03-26 09:16:32
cvelist
cvelist
CVE-2015-1421
2015-03-16 10:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-03-31 00:00:00
kernel security and bug fix update
2015-03-26 00:00:00
Unbreakable Enterprise kernel security update
2015-03-31 00:00:00
centos
centos
kernel, perf, python security update
2015-04-01 03:22:51
kernel, perf, python security update
2015-04-22 09:51:52
ubuntu
ubuntu
Linux kernel vulnerabilities
2015-03-24 00:00:00
Linux kernel (Utopic HWE) vulnerabilities
2015-03-24 00:00:00
Linux kernel vulnerabilities
2015-04-08 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2015-02-17 21:38:13
Updated kernel-vserver packages fix security vulnerabilities
2015-02-19 17:43:07
Updated kernel-tmb packages fix security vulnerabilities
2015-02-19 17:43:07
ibm
ibm
Security Bulletin: Multiple Kernel vulnerabilities affect PowerKVM (Multiple CVEs)
2018-06-18 01:28:02
debian
debian
[SECURITY] [DLA 155-1] linux-2.6 security update
2015-02-18 23:22:13
[SECURITY] [DSA 3170-1] linux security update
2015-02-23 17:42:49
securityvulns
securityvulns
[SECURITY] [DSA 3170-1] linux security update
2015-03-07 00:00:00
Linux kernel multiple security vulnerabilities
2015-03-15 00:00:00
osv
osv
linux-2.6 - security update
2015-02-18 00:00:00
linux - security update
2015-02-23 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: kernel-3.18.8-201.fc21
2015-03-09 08:17:35
[SECURITY] Fedora 21 Update: kernel-3.19.2-201.fc21
2015-03-29 04:31:39
[SECURITY] Fedora 21 Update: kernel-3.19.1-201.fc21
2015-03-21 05:01:11

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

High

0.061 Low

EPSS

Percentile

93.6%

JSON
Related for NVD:CVE-2015-1421
f52nessus37openvas44veracode1suse5debiancve1cve1ubuntucve1prion1redhat7cvelist1oraclelinux6centos2ubuntu6mageia4ibm1debian2securityvulns2osv2fedora14