Rewterz Threat Advisory – CVE-2021-1048 – Google Zero-Day Actively Exploited In The Wild
November 19, 2021Rewterz Threat Advisory – CVE-2021-29753 – IBM Business Automation Workflow
November 19, 2021Rewterz Threat Advisory – CVE-2021-1048 – Google Zero-Day Actively Exploited In The Wild
November 19, 2021Rewterz Threat Advisory – CVE-2021-29753 – IBM Business Automation Workflow
November 19, 2021Severity
High
Analysis Summary
CVE-2021-43975
Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by an out-of-bounds write in hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c. By introducing a specially crafted device, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Affected Vendors
- Linux
Affected Products
- Linux Kernel 5.15.2
Remediation
Refer to Linux Kernel GIT Repository for patch, upgrade or suggested workaround information.