CVE-2021-20322
Advisory lineage Upstream: 0 Downstream: 34
Modified
Published: 18 Feb 2022, 17:50
Last modified:03 Aug 2024, 17:37
Vulnerability Summary
Overall Risk (default)
medium
30/100 CVSS Score
7.4 HIGH
v3.1 (nvd)
EPSS Score
0.14% LOW
0% probability +0.03%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
18 Feb 2022, 17:50
Published
Vulnerability first disclosed
03 Aug 2024, 17:37
Last Modified
Vulnerability information updated
Description
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.
CVSS Metrics
- v3.1•HIGH•Score: 7.4CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
- v2.0•MEDIUM•Score: 5.8AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS Trends
Current EPSS score: 0.14%• Percentile: 33%
Techniques & Countermeasures
- CWE-330•Use of Insufficiently Random Values
The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.
Affected Systems
- debian•debian_linux
9.0 | 10.0
- fedoraproject•fedora
34
- linux•linux_kernel
≤ 5.14.21
- netapp•active_iq_unified_manager
na
- netapp•aff_a700s
na
- netapp•aff_baseboard_management_controller
na
- netapp•e-series_santricity_os_controller
≥ 11.0, ≤ 11.70.1
- netapp•fas_baseboard_management_controller
na
- netapp•h300e
na
- netapp•h300s_firmware
na
- netapp•h410s_firmware
na
- netapp•h500e
na
- netapp•h500s_firmware
na
- netapp•h700e
na
- netapp•h700s_firmware
na
- netapp•hci_compute_node_firmware
na
- netapp•solidfire_\&_hci_management_node
na
- netapp•solidfire\,_enterprise_sds_\&_hci_storage_node
na
- oracle•communications_cloud_native_core_binding_support_function
22.1.3
- oracle•communications_cloud_native_core_network_exposure_function
22.1.1
- oracle•communications_cloud_native_core_policy
22.2.0
References (9)
- https://bugzilla.redhat.com/show_bug.cgi?id=2014230
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15-rc6&id=4785305c05b25a242e5314cc821f54ade4c18810
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15-rc6&id=6457378fe796815c973f631a1904e147d6ee33b1
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ipv4/route.c?h=v5.15-rc6&id=67d6d681e15b578c1725bad8ad079e05d1c48a8e
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ipv6/route.c?h=v5.15-rc6&id=a00df2caffed3883c341d5685f830434312e4a43
- https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html
- https://www.debian.org/security/2022/dsa-5096
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://security.netapp.com/advisory/ntap-20220303-0002/