CVE-2021-3773

Published: Feb 16, 2022Modified: Mar 28, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.

Affected (9)

Products: Linux: Linux Kernel · Fedoraproject: Fedora · Redhat: Enterprise Linux · +1 more

Show all products

Linux: Linux Kernel · Fedoraproject: Fedora · Redhat: Enterprise Linux · Oracle: Communications Cloud Native Core Binding Support Function, Communications Cloud Native Core Network Exposure Function, Communications Cloud Native Core Policy

1 product

1 product

1 product

3 products

Communications Cloud Native Core Binding Support Function

Communications Cloud Native Core Network Exposure Function

Communications Cloud Native Core Policy

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 5.14
Linux Linux Kernel	From 5.15 to 5.15.15

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 34

Configuration C

3 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 6.0
Redhat Enterprise Linux	Version 7.0
Redhat Enterprise Linux	Version 8.0

Configuration D

3 vulnerable

Vulnerable Software	Affected Versions
Oracle Communications Cloud Native Core Binding Support Function	Version 22.1.3
Oracle Communications Cloud Native Core Network Exposure Function	Version 22.1.1
Oracle Communications Cloud Native Core Policy	Version 22.2.0