CVE-2021-22555
Advisory lineage Upstream: 0 Downstream: 52
Analyzed
Published: 07 Jul 2021, 11:20
Last modified:30 Dec 2025, 20:32
Vulnerability Summary
Overall Risk (default)
high
60/100 CVSS Score
8.3 HIGH
v3.1 (cve.org)
EPSS Score
85.24% CRITICAL
85% probability 0.00%
KEV
Listed
CISA
1 listing
Ransomware
No reports
Public exploits
7 found
Dark Web
Not detected
Timeline
07 Jul 2021, 11:20
Published
Vulnerability first disclosed
06 Oct 2025, 00:00
Added to CISA KEV
Linux Kernel Heap Out-of-Bounds Write Vulnerability
27 Oct 2025, 00:00
CISA Remediation Due
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
30 Dec 2025, 20:32
Last Modified
Vulnerability information updated
Description
A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space
CVSS Metrics
- v3.1•HIGH•Score: 8.3CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
- v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- v2.0•MEDIUM•Score: 4.6AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS Trends
Current EPSS score: 85.24%• Percentile: 99%
Techniques & Countermeasures
- CWE-787•Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
Affected Systems
- brocade•fabric_operating_system
na
- linux•linux_kernel
≥ 2.6.19, < 4.4.267 | ≥ 4.5, < 4.9.267 | ≥ 4.10, < 4.14.231 | ≥ 4.15, < 4.19.188 | ≥ 4.20, < 5.4.113 | ≥ 5.5, < 5.10.31 | ≥ 5.11, < 5.12
- netapp•aff_500f_firmware
na
- netapp•aff_a250_firmware
na
- netapp•aff_a400_firmware
na
- netapp•c250_firmware
na
- netapp•c400_firmware
na
- netapp•cloud_backup
na
- netapp•fas_8300_firmware
na
- netapp•fas_8700_firmware
na
- netapp•h300s_firmware
na
- netapp•h410c_firmware
na
- netapp•h410s_firmware
na
- netapp•h500s_firmware
na
- netapp•h610c_firmware
na
- netapp•h610s_firmware
na
- netapp•h615c_firmware
na
- netapp•h700s_firmware
na
- netapp•hci_management_node
na
- netapp•solidfire
na
References (10)
- https://github.com/google/security-research/security/advisories/GHSA-xxx5-8mvq-3528
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/x_tables.c?id=9fa492cdc160cd27ce1046cb36f47d3b2b1efa21
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/x_tables.c?id=b29c457a6511435960115c0f548c4360d5f4801d
- http://packetstormsecurity.com/files/163528/Linux-Kernel-Netfilter-Heap-Out-Of-Bounds-Write.html
- https://security.netapp.com/advisory/ntap-20210805-0010/
- http://packetstormsecurity.com/files/163878/Kernel-Live-Patch-Security-Notice-LSN-0080-1.html
- http://packetstormsecurity.com/files/164155/Kernel-Live-Patch-Security-Notice-LSN-0081-1.html
- http://packetstormsecurity.com/files/164437/Netfilter-x_tables-Heap-Out-Of-Bounds-Write-Privilege-Escalation.html
- http://packetstormsecurity.com/files/165477/Kernel-Live-Patch-Security-Notice-LSN-0083-1.html
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-22555