Main Vulnerability Database Exploits ID:8596 - Exploit for Type Confusion in Linux kernel - CVE-2021-33624

ID:8596 - Exploit for Type Confusion in Linux kernel - CVE-2021-33624

Published: November 10, 2022

Vulnerability identifier: #VU64881

Vulnerability risk: Low

CVE-ID: CVE-2021-33624

CWE-ID: CWE-843

Exploitation vector: Local access

Vulnerable software:
Linux kernel

Link to public exploit:

https://github.com/benschlueter/CVE-2021-33624

Vulnerability description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a type confusion error within kernel/bpf/verifier.c in the Linux kernel. A an unprivileged BPF program can read arbitrary memory locations via a side-channel attack.

Remediation

Install updates from vendor's website.

ID:8596 - Exploit for Type Confusion in Linux kernel - CVE-2021-33624

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human