Lucene search

K
ubuntucveUbuntu.comUB:CVE-2021-20322
HistoryOct 19, 2021 - 12:00 a.m.

CVE-2021-20322

2021-10-1900:00:00
ubuntu.com
ubuntu.com
70

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

0.003 Low

EPSS

Percentile

68.1%

A flaw in the processing of received ICMP errors (ICMP fragment needed and
ICMP redirect) in the Linux kernel functionality was found to allow the
ability to quickly scan open UDP ports. This flaw allows an off-path remote
user to effectively bypass the source port UDP randomization. The highest
threat from this vulnerability is to confidentiality and possibly
integrity, because software that relies on UDP source port randomization
are indirectly affected as well.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-167.175UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-92.103UNKNOWN
ubuntu21.10noarchlinux< 5.13.0-21.21UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1119.127UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1061.64UNKNOWN
ubuntu21.10noarchlinux-aws< 5.13.0-1006.7UNKNOWN
ubuntu20.04noarchlinux-aws-5.11< 5.11.0-1021.22~20.04.2UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1061.64~18.04.1UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1119.126~16.04.2UNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1065.68UNKNOWN
Rows per page:
1-10 of 551

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

0.003 Low

EPSS

Percentile

68.1%