Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2021-3571
HistoryJul 06, 2021 - 3:18 p.m.

CVE-2021-3571

2021-07-0615:18:12
redhat.com
access.redhat.com
43

0.003 Low

EPSS

Percentile

69.1%

JSON

A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote attacker could send a crafted one-step sync message to cause an information leak or crash. The highest threat from this vulnerability is to data confidentiality and system availability.

Mitigation

Only attackers that can connect to the ptp4l service can exploit this vulnerability. If ptp4l is bound only to a private network interface, or is protected by firewall rules to block incoming PTP management messages, the attack surface is correspondingly limited. When using the UDP IPv4 or IPv6 network transport, the following tcpdump filter can be used to detect PTP management messages:

(port 319 or port 320) and udp[8]&0xf=0xd

Related

prion 1
nessus 11
osv 3
cve 1
almalinux 1
amazon 1
oraclelinux 1
rocky 1
debiancve 1
redhat 1
cbl_mariner 1
cvelist 1
ubuntucve 1
photon 4
redos 1
openvas 3
fedora 2
prion
prion
Design/Logic Flaw
2021-07-09 11:15:00
nessus
nessus
AlmaLinux 8 : linuxptp (ALSA-2021:4321)
2022-02-09 00:00:00
RHEL 8 : linuxptp (RHSA-2021:4321)
2021-11-11 00:00:00
Amazon Linux 2 : linuxptp (ALAS-2021-1705)
2021-09-16 00:00:00
osv
osv
Moderate: linuxptp security, bug fix, and enhancement update
2021-11-09 09:00:47
Moderate: linuxptp security, bug fix, and enhancement update
2021-11-09 09:00:47
CVE-2021-3571
2021-07-09 11:15:08
cve
cve
CVE-2021-3571
2021-07-09 11:15:00
almalinux
almalinux
Moderate: linuxptp security, bug fix, and enhancement update
2021-11-09 09:00:47
amazon
amazon
Medium: linuxptp
2021-09-08 23:35:00
oraclelinux
oraclelinux
linuxptp security, bug fix, and enhancement update
2021-11-16 00:00:00
rocky
rocky
linuxptp security, bug fix, and enhancement update
2021-11-09 09:00:47
debiancve
debiancve
CVE-2021-3571
2021-07-09 11:15:00
redhat
redhat
(RHSA-2021:4321) Moderate: linuxptp security, bug fix, and enhancement update
2021-11-09 09:00:47
cbl_mariner
cbl_mariner
CVE-2021-3571 affecting package linuxptp 2.0-8
2024-05-21 09:07:24
cvelist
cvelist
CVE-2021-3571
2021-07-09 10:33:09
ubuntucve
ubuntucve
CVE-2021-3571
2021-07-05 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0059
2021-07-08 00:00:00
Important Photon OS Security Update - PHSA-2021-0265
2021-07-08 00:00:00
Important Photon OS Security Update - PHSA-2021-3.0-0265
2021-07-08 00:00:00
redos
redos
ROS-20220131-01
2022-01-31 00:00:00
openvas
openvas
Fedora: Security Advisory for linuxptp (FEDORA-2021-1b42c2f458)
2021-07-18 00:00:00
Fedora: Security Advisory for linuxptp (FEDORA-2021-a5b584004c)
2021-07-18 00:00:00
Huawei EulerOS: Security Advisory for linuxptp (EulerOS-SA-2021-2473)
2021-09-24 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: linuxptp-3.1.1-1.fc33
2021-07-16 01:06:08
[SECURITY] Fedora 34 Update: linuxptp-3.1.1-1.fc34
2021-07-16 01:00:34

0.003 Low

EPSS

Percentile

69.1%

JSON
Related for RH:CVE-2021-3571
prion1nessus11osv3cve1almalinux1amazon1oraclelinux1rocky1debiancve1redhat1cbl_mariner1cvelist1ubuntucve1photon4redos1openvas3fedora2