CVE-2021-3600

Description

It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.

CVSS Version 3.1

nvd
CVE ID: CVE-2021-3600
Base Score: 7.8
Base Severity: HIGH
Vector String:CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.8

ubuntu
CVE ID: CVE-2021-3600
Base Score: 7.8
Base Severity: HIGH
Vector String:CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Impact Score: 6.0
Exploitability Score: 1.1

Refrence: NVD MITRE

Description​

Description