Vulnerability Details : CVE-2021-23134

Use After Free vulnerability in nfc sockets in the Linux Kernel before 5.12.4 allows local attackers to elevate their privileges. In typical configurations, the issue can only be triggered by a privileged local user with the CAP_NET_RAW capability.

Vulnerability category: Memory Corruption

Published 2021-05-12 23:15:08

Updated 2021-09-07 22:06:08

Source Palo Alto Networks, Inc.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2021-23134

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2021-23134

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	nvd@nist.gov
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	psirt@paloaltonetworks.com
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2021-23134

CWE-416 Use After Free

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.
Assigned by:
- nvd@nist.gov (Primary)
- psirt@paloaltonetworks.com (Secondary)

References for CVE-2021-23134

https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=c61760e6940d

kernel/git/netdev/net.git - Netdev Group's networking tree
Mailing List;Patch;Vendor Advisory
https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html

[SECURITY] [DLA 2690-1] linux-4.19 security update
Mailing List;Third Party Advisory

CVEs referencing this url
https://www.openwall.com/lists/oss-security/2021/05/11/4

oss-security - CVE-2021-23134: Linux kernel: UAF in nfc sockets
Mailing List;Patch;Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html

[SECURITY] [DLA 2689-1] linux security update
Mailing List;Third Party Advisory

CVEs referencing this url
https://security.netapp.com/advisory/ntap-20210625-0007/

CVE-2021-23134 Linux Kernel Vulnerability in NetApp Products | NetApp Product Security
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZYORWNQIHNWRFYRDXBWYWBYM46PDZEN/

[SECURITY] Fedora 34 Update: kernel-tools-5.11.20-300.fc34 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QALNQT4LJFVSSA3MWCIECVY4AFPP4X77/

[SECURITY] Fedora 33 Update: kernel-5.11.20-200.fc33 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

Products affected by CVE-2021-23134

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions before (<) 5.12.4
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 33
cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
Matching versions
Fedoraproject » Fedora » Version: 34
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
Matching versions