Vulnerability identifier: #VU54292
Vulnerability risk: Medium
Exploitation vector: Local
Vendor: Linux Foundation
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a race condition in the CAN BCM networking protocol (net/can/bcm.c) in the Linux kernel ranging from version 2.6.25 to mainline 5.13-rc6. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vulnerable software versions
Fixed software versions
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?