Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:29820
HistoryMar 24, 2021 - 9:52 p.m.

Arbitrary Code Execution

2021-03-2421:52:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
linux
kernel
arbitrary code
execution
bpf verifier
out-of-bounds
read
malicious programs

EPSS

0

Percentile

9.7%

The bpf verifier in the Linux kernel is vulnerable to arbitrary code execution. A local attacker with the ability to load malicious bpf programs is able to exploit an out-of-bounds read through the bpf verifier and execute arbitrary code on the host OS.