Vulnerability Details : CVE-2021-33630
NULL Pointer Dereference vulnerability in openEuler kernel on Linux (network modules) allows Pointer Manipulation. This vulnerability is associated with program files net/sched/sch_cbs.C.
This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3.
Vulnerability category: Memory Corruption
Products affected by CVE-2021-33630
- cpe:2.3:o:huawei:openeuler:*:*:*:*:-:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-33630
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 8 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-33630
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.5
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST | 2024-01-25 |
5.5
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
openEuler | 2024-01-18 |
CWE ids for CVE-2021-33630
-
The product dereferences a pointer that it expects to be valid but is NULL.Assigned by:
- nvd@nist.gov (Primary)
- securities@openeuler.org (Secondary)
References for CVE-2021-33630
-
http://www.openwall.com/lists/oss-security/2024/02/03/1
oss-security - Re: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
http://www.openwall.com/lists/oss-security/2024/02/02/9
oss-security - Re: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
http://www.openwall.com/lists/oss-security/2024/01/31/3
oss-security - Re: FWD: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
http://www.openwall.com/lists/oss-security/2024/01/30/10
oss-security - Re: FWD: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
[SECURITY] [DLA 3840-1] linux security update
-
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031
安全公告详情Vendor Advisory
-
http://www.openwall.com/lists/oss-security/2024/02/02/6
oss-security - Re: FWD: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
http://www.openwall.com/lists/oss-security/2024/01/30/9
oss-security - Re: FWD: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030
安全公告详情Vendor Advisory
-
http://www.openwall.com/lists/oss-security/2024/01/31/2
oss-security - Re: FWD: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
http://www.openwall.com/lists/oss-security/2024/01/30/3
oss-security - FWD: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3e8b9bfa110896f95d602d8c98d5f9d67e41d78c
net/sched: cbs: Fix not adding cbs instance to list - kernel/git/torvalds/linux.git - Linux kernel source tree
-
https://gitee.com/src-openeuler/kernel/pulls/1389
release 4.19.90-2401.3.0 · Pull Request !1389 · src-openEuler/kernel - GiteeRelease Notes
-
http://www.openwall.com/lists/oss-security/2024/01/30/5
oss-security - Re: FWD: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
-
http://www.openwall.com/lists/oss-security/2024/01/30/4
oss-security - Re: FWD: Kernel vulnerabilities CVE-2021-33630 & CVE-2021-33631
Jump to