← Back

CVE-2021-45486

nvd nist
Published: Dec 25, 2021Modified: Nov 21, 2024

JSON object

Loading...
3.5
Vector
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Exploitability: 2.1 / Impact: 1.4
Source: NVD

Description

In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.

Affected (4)

Linux
1 product
Linux Kernel
Oracle
3 products
Communications Cloud Native Core Binding Support Function
Communications Cloud Native Core Network Exposure Function
Communications Cloud Native Core Policy
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Linux Kernel
Before 5.12.4
Configuration B
3 vulnerable
Vulnerable SoftwareAffected Versions
Communications Cloud Native Core Binding Support Function
Version 22.1.3
Communications Cloud Native Core Network Exposure Function
Version 22.1.1
Communications Cloud Native Core Policy
Version 22.2.0

Related CWEs

CWE-327
Use of a Broken or Risky Cryptographic Algorithm
The product uses a broken or risky cryptographic algorithm or protocol.

References (8)

Source: cve@mitre.org
Technical DescriptionThird Party Advisory
Source: cve@mitre.org
Release NotesVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Technical DescriptionThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Release NotesVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory

Timeline

No history available yet.