CVE-2021-4197
HIGHLinux Kernel 4.2-4.14.276 - Privilege Escalation via Unprivileged Write to File Handler
Title source: llmDescription
An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1 versions of control groups. A local user could use this flaw to crash the system or escalate their privileges on the system.
References (6)
Core 6
Core References
Mailing List x_refsource_misc
https://lore.kernel.org/lkml/20211209214707.805617-1-tj%40kernel.org/T/
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=2035652
Third Party Advisory vendor-advisory
x_refsource_debian
https://www.debian.org/security/2022/dsa-5127
Third Party Advisory vendor-advisory
x_refsource_debian
https://www.debian.org/security/2022/dsa-5173
Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpujul2022.html
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20220602-0006/
Scores
CVSS v3
7.8
EPSS
0.0002
EPSS Percentile
3.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (11)
broadcom/brocade_fabric_operating_system_firmware
debian/debian_linux
10.0
linux/linux_kernel
4.2 - 4.14.276
netapp/h300s_firmware
netapp/h410c_firmware
netapp/h410s_firmware
netapp/h500s_firmware
netapp/h700s_firmware
oracle/communications_cloud_native_core_binding_support_function
22.1.1
oracle/communications_cloud_native_core_binding_support_function
22.1.3
... and 1 more
Published
Mar 23, 2022
Tracked Since
Feb 18, 2026