CVE-2021-3609

7.0

HIGH

Linux Kernel CAN BCM Local Privilege Escalation Vulnerability

Description

.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.

INFO

Published Date :

March 3, 2022, 7:15 p.m.

Last Modified :

Aug. 11, 2023, 7:44 p.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

5.9

Exploitability Score :

1.0 Public PoC/Exploit Available at Github

CVE-2021-3609 has a 2 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

Affected Products

The following products are affected by CVE-2021-3609 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Redhat	enterprise_linux_server_aus
2	Redhat	enterprise_linux_server_tus
3	Redhat	openshift_container_platform
4	Redhat	enterprise_linux_eus
5	Redhat	virtualization
6	Redhat	virtualization_host
7	Redhat	enterprise_linux_for_ibm_z_systems_eus
8	Redhat	enterprise_linux_for_power_little_endian_eus
9	Redhat	enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions
10	Redhat	enterprise_linux_server_update_services_for_sap_solutions
11	Redhat	enterprise_linux_for_real_time
12	Redhat	enterprise_linux_for_real_time_for_nfv
13	Redhat	enterprise_linux_for_real_time_for_nfv_tus
14	Redhat	enterprise_linux_for_real_time_tus
15	Redhat	enterprise_linux_aus
16	Redhat	enterprise_linux_for_ibm_z_systems_eus_s390x
17	Redhat	build_of_quarkus
18	Redhat	codeready_linux_builder_eus
19	Redhat	codeready_linux_builder_for_power_little_endian_eus
20	Redhat	3scale_api_management
1	Netapp	h410c_firmware
2	Netapp	h300s_firmware
3	Netapp	h500s_firmware
4	Netapp	h700s_firmware
5	Netapp	h410s_firmware
6	Netapp	h615c_firmware
7	Netapp	h610s_firmware
8	Netapp	h610c_firmware
9	Netapp	h300e_firmware
10	Netapp	h500e_firmware
11	Netapp	h700e_firmware
1	Linux	linux_kernel

: Total Affected Vendor : 3 | Products : 32

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2021-3609.

URL	Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1971651	Issue Tracking Third Party Advisory
https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md	Exploit Technical Description Third Party Advisory
https://github.com/torvalds/linux/commit/d5f9023fa61ee8b94f37a93f08e94b136cf1e463	Patch Third Party Advisory
https://security.netapp.com/advisory/ntap-20220419-0004/	Third Party Advisory
https://www.openwall.com/lists/oss-security/2021/06/19/1	Mailing List Third Party Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

ndk06/linux-kernel-exploitation

None

Updated: 1 week, 6 days ago

6 stars 0 fork 0 watcher

Born at : Feb. 25, 2023, 10:40 a.m. This repo has been linked 178 different CVEs too.

xairy/linux-kernel-exploitation

A collection of links related to Linux kernel security and exploitation

linux-kernel kernel-exploitation exploit privilege-escalation security

Updated: 21 hours, 2 minutes ago

5527 stars 902 fork 902 watcher

Born at : Nov. 13, 2016, 10:21 p.m. This repo has been linked 225 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2021-3609 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2021-3609 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

CVE Modified by [email protected]

May. 14, 2024

Action Type Old Value New Value

Reanalysis by [email protected]

Aug. 11, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 2.6.25 up to (excluding) 5.13 cpe:2.3:o:linux:linux_kernel:5.13:rc1::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc2::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc3::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc4::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc5::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc6::::::*	OR cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 2.6.25 up to (excluding) 4.4.276 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.5 up to (excluding) 4.9.276 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.10 up to (excluding) 4.14.240 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.15 up to (excluding) 4.19.198 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.20 up to (excluding) 5.4.132 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.5.0 up to (excluding) 5.10.50 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.11 up to (excluding) 5.12.17 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.13 up to (excluding) 5.13.2

Modified Analysis by [email protected]

May. 16, 2023

Action	Type	Old Value	New Value
Changed	CPE Configuration	OR cpe:2.3:a:linux:linux_kernel::::::::* versions from (including) 2.6.25 up to (excluding) 5.13 cpe:2.3:a:linux:linux_kernel:5.13:rc1::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc2::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc3::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc4::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc5::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc6::::::*	OR cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 2.6.25 up to (excluding) 5.13 cpe:2.3:o:linux:linux_kernel:5.13:rc1::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc2::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc3::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc4::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc5::::::* cpe:2.3:o:linux:linux_kernel:5.13:rc6::::::*

CVE Modified by [email protected]

Feb. 12, 2023

Action	Type	Old Value	New Value
Changed	Description	A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges.	.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.
Removed	CVSS V3.1	Red Hat, Inc. AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3044 [No Types Assigned]
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3057 [No Types Assigned]
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3088 [No Types Assigned]
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3235 [No Types Assigned]
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3363 [No Types Assigned]
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3375 [No Types Assigned]
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3380 [No Types Assigned]
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3442 [No Types Assigned]
Removed	Reference	https://access.redhat.com/errata/RHSA-2021:3444 [No Types Assigned]
Removed	Reference	https://access.redhat.com/security/cve/CVE-2021-3609 [No Types Assigned]
Added	CWE		Red Hat, Inc. CWE-362

CVE Modified by [email protected]

Feb. 02, 2023

Action	Type	Old Value	New Value
Changed	Description	.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges. This race condition in net/can/bcm.c in the Linux kernel allows for local privilege escalation to root.	A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges.
Added	CVSS V3.1		Red Hat, Inc. AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Added	Reference		https://access.redhat.com/security/cve/CVE-2021-3609 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3380 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3044 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3088 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3363 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3375 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3235 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3444 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3057 [No Types Assigned]
Added	Reference		https://access.redhat.com/errata/RHSA-2021:3442 [No Types Assigned]
Removed	CWE	Red Hat, Inc. CWE-362

Modified Analysis by [email protected]

Oct. 06, 2022

Action	Type	Old Value	New Value
Changed	Reference Type	https://security.netapp.com/advisory/ntap-20220419-0004/ No Types Assigned	https://security.netapp.com/advisory/ntap-20220419-0004/ Third Party Advisory
Changed	CPE Configuration	OR cpe:2.3:a:redhat:3scale_api_management:2.0::::::: cpe:2.3:a:redhat:build_of_quarkus:1.0::::::: cpe:2.3:a:redhat:openshift_container_platform:4.6::::::: cpe:2.3:a:redhat:openshift_container_platform:4.7::::::: cpe:2.3:a:redhat:openshift_container_platform:4.8::::::: cpe:2.3:a:redhat:virtualization:4.0::::::: cpe:2.3:a:redhat:virtualization_host:4.0::::::: cpe:2.3:o:redhat:codeready_linux_builder_eus:8.1::::::: cpe:2.3:o:redhat:codeready_linux_builder_eus:8.2::::::: cpe:2.3:o:redhat:codeready_linux_builder_eus:8.4::::::: cpe:2.3:o:redhat:codeready_linux_builder_for_power_little_endian_eus:8.1::::::: cpe:2.3:o:redhat:codeready_linux_builder_for_power_little_endian_eus:8.2::::::: cpe:2.3:o:redhat:codeready_linux_builder_for_power_little_endian_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_aus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus_s390x:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.4:::::::	OR cpe:2.3:a:redhat:3scale_api_management:2.0::::::: cpe:2.3:a:redhat:build_of_quarkus:1.0::::::: cpe:2.3:a:redhat:codeready_linux_builder_eus:8.1::::::: cpe:2.3:a:redhat:codeready_linux_builder_eus:8.2::::::: cpe:2.3:a:redhat:codeready_linux_builder_eus:8.4::::::: cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian_eus:8.1::::::: cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian_eus:8.2::::::: cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian_eus:8.4::::::: cpe:2.3:a:redhat:openshift_container_platform:4.6::::::: cpe:2.3:a:redhat:openshift_container_platform:4.7::::::: cpe:2.3:a:redhat:openshift_container_platform:4.8::::::: cpe:2.3:a:redhat:virtualization:4.0::::::: cpe:2.3:a:redhat:virtualization_host:4.0::::::: cpe:2.3:o:redhat:enterprise_linux_aus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus_s390x:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.4:::::::
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h300s_firmware:-::::::: OR cpe:2.3:h:netapp:h300s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h500s_firmware:-::::::: OR cpe:2.3:h:netapp:h500s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h700s_firmware:-::::::: OR cpe:2.3:h:netapp:h700s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h300e_firmware:-::::::: OR cpe:2.3:h:netapp:h300e:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h500e_firmware:-::::::: OR cpe:2.3:h:netapp:h500e:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h700e_firmware:-::::::: OR cpe:2.3:h:netapp:h700e:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h410s_firmware:-::::::: OR cpe:2.3:h:netapp:h410s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h410c_firmware:-::::::: OR cpe:2.3:h:netapp:h410c:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h610c_firmware:-::::::: OR cpe:2.3:h:netapp:h610c:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h610s_firmware:-::::::: OR cpe:2.3:h:netapp:h610s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:netapp:h615c_firmware:-::::::: OR cpe:2.3:h:netapp:h615c:-:::::::*

CVE Modified by [email protected]

Apr. 19, 2022

Action Type Old Value New Value

Added Reference https://security.netapp.com/advisory/ntap-20220419-0004/ [No Types Assigned]

Action	Type	Old Value	New Value
Added	Reference		https://security.netapp.com/advisory/ntap-20220419-0004/ [No Types Assigned]

Initial Analysis by [email protected]

Mar. 10, 2022

Action	Type	Old Value	New Value
Added	CVSS V2		NIST (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Added	CVSS V3.1		NIST AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Changed	Reference Type	https://bugzilla.redhat.com/show_bug.cgi?id=1971651 No Types Assigned	https://bugzilla.redhat.com/show_bug.cgi?id=1971651 Issue Tracking, Third Party Advisory
Changed	Reference Type	https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md No Types Assigned	https://github.com/nrb547/kernel-exploitation/blob/main/cve-2021-3609/cve-2021-3609.md Exploit, Technical Description, Third Party Advisory
Changed	Reference Type	https://github.com/torvalds/linux/commit/d5f9023fa61ee8b94f37a93f08e94b136cf1e463 No Types Assigned	https://github.com/torvalds/linux/commit/d5f9023fa61ee8b94f37a93f08e94b136cf1e463 Patch, Third Party Advisory
Changed	Reference Type	https://www.openwall.com/lists/oss-security/2021/06/19/1 No Types Assigned	https://www.openwall.com/lists/oss-security/2021/06/19/1 Mailing List, Third Party Advisory
Added	CWE		NIST CWE-362
Added	CPE Configuration		OR cpe:2.3:a:linux:linux_kernel::::::::* versions from (including) 2.6.25 up to (excluding) 5.13 cpe:2.3:a:linux:linux_kernel:5.13:rc1::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc2::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc3::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc4::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc5::::::* cpe:2.3:a:linux:linux_kernel:5.13:rc6::::::*
Added	CPE Configuration		OR cpe:2.3:a:redhat:3scale_api_management:2.0::::::: cpe:2.3:a:redhat:build_of_quarkus:1.0::::::: cpe:2.3:a:redhat:openshift_container_platform:4.6::::::: cpe:2.3:a:redhat:openshift_container_platform:4.7::::::: cpe:2.3:a:redhat:openshift_container_platform:4.8::::::: cpe:2.3:a:redhat:virtualization:4.0::::::: cpe:2.3:a:redhat:virtualization_host:4.0::::::: cpe:2.3:o:redhat:codeready_linux_builder_eus:8.1::::::: cpe:2.3:o:redhat:codeready_linux_builder_eus:8.2::::::: cpe:2.3:o:redhat:codeready_linux_builder_eus:8.4::::::: cpe:2.3:o:redhat:codeready_linux_builder_for_power_little_endian_eus:8.1::::::: cpe:2.3:o:redhat:codeready_linux_builder_for_power_little_endian_eus:8.2::::::: cpe:2.3:o:redhat:codeready_linux_builder_for_power_little_endian_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_aus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus_s390x:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.0::::::: cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.1::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.2::::::: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.4:::::::

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2021-3609 is associated with the following CWEs:

CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2021-3609 weaknesses.

CAPEC-26: Leveraging Race Conditions Leveraging Race Conditions CAPEC-29: Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions

CVE-2021-3609

Linux Kernel CAN BCM Local Privilege Escalation Vulnerability

Description

INFO

March 3, 2022, 7:15 p.m.

Aug. 11, 2023, 7:44 p.m.

[email protected]

No

5.9

1.0

Public PoC/Exploit Available at Github

Affected Products

References to Advisories, Solutions, and Tools

ndk06/linux-kernel-exploitation

xairy/linux-kernel-exploitation

CVE Modified by [email protected]

Reanalysis by [email protected]

Modified Analysis by [email protected]

CVE Modified by [email protected]

CVE Modified by [email protected]

Modified Analysis by [email protected]

CVE Modified by [email protected]

Initial Analysis by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

0.04 }} 0.00%

0.05635

CVSS31 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable