CVE-2021-31440

HIGH

Linux Kernel 5.11.15 - Privilege Escalation

Title source: llm

Description

This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel 5.11.15. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of eBPF programs. The issue results from the lack of proper validation of user-supplied eBPF programs prior to executing them. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the kernel. Was ZDI-CAN-13661.

References (3)

[Patch, Vendor Advisory] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=10bf4e83167cc68595b85fd73bb91e8f2c086e36

[Third Party Advisory] https://security.netapp.com/advisory/ntap-20210706-0003/

[Third Party Advisory, VDB Entry] https://www.zerodayinitiative.com/advisories/ZDI-21-503/

Scores

CVSS v3 7.0

EPSS 0.0067

EPSS Percentile 71.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-682

Status published

Affected Products (10)

linux/linux_kernel < 5.10.37

netapp/solidfire_baseboard_management_controller_firmware

netapp/cloud_backup

netapp/h500s_firmware

netapp/h700s_firmware

netapp/h300e_firmware

netapp/h500e_firmware

netapp/h700e_firmware

netapp/h410s_firmware

netapp/h300s_firmware

Timeline

Published May 21, 2021

Tracked Since Feb 18, 2026