CVE-2021-43267 – Linux Foundation / Linux kernel – Improper input validation

December 10, 2021

CVE-2021-43267 is an improper input validation vulnerability impacting Linux kernel versions 5.14.15 and earlier. An exploit was observed in open source and subsequently shared in the underground.

Summary:

CVE-2021-43267 is an improper input validation vulnerability impacting Linux kernel versions 5.14.15 and earlier. An exploit was observed in open source and subsequently shared in the underground.

PoC Links(if available):

haxx: Local PoC exploit for CVE-2021-43267 –
https://haxx.in/files/blasty-vs-tipc.c

Known Counter Measures:

The Linux Foundation addressed the vulnerability in Linux kernel versions 5.14.16.

Links to patches(if available)

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.16

You may have missed

ransomhouse 1

RansomHouse Ransomware Victim: Gantan Beauty Industry

May 19, 2024
ransomhouse 1

RansomHouse Ransomware Victim: ABS-CBN Broadcasting

May 19, 2024
CISA Logo

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

May 19, 2024
CISA Logo

CISA: CISA Releases Four Industrial Control Systems Advisories

May 19, 2024
CISA Logo

CISA: CISA and Partners Release Guidance for Civil Society Organizations on Mitigating Cyber Threats with Limited Resources

May 19, 2024