CVE-2021-3715

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-3715

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-3715.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-3715

Aliases

A-223966861
PUB-A-223966861

Downstream

DEBIAN-CVE-2021-3715

OESA-2021-1341

RHSA-2020:4431

RHSA-2020:4609

RHSA-2021:3438

RHSA-2021:3439

RHSA-2021:3441

RHSA-2021:3442

RHSA-2021:3443

RHSA-2021:3444

RHSA-2021:3445

RHSA-2021:3446

RHSA-2021:3477

RHSA-2022:7173

SUSE-SU-2021:3371-1

SUSE-SU-2021:3401-1

SUSE-SU-2021:3440-1

SUSE-SU-2021:3459-1

SUSE-SU-2021:3640-1

SUSE-SU-2021:3641-1

SUSE-SU-2021:3642-1

SUSE-SU-2021:3658-1

SUSE-SU-2021:3675-1

SUSE-SU-2021:3723-1

SUSE-SU-2021:3748-1

SUSE-SU-2021:3754-1

SUSE-SU-2021:3876-1

SUSE-SU-2021:3929-1

SUSE-SU-2021:3935-1

SUSE-SU-2021:3972-1

UBUNTU-CVE-2021-3715

LSN-0082-1

openSUSE-SU-2021:1477-1

openSUSE-SU-2021:3641-1

openSUSE-SU-2021:3675-1

openSUSE-SU-2021:3876-1

Related

Published

2022-03-02T23:15:08Z

Modified

2025-08-09T20:01:28Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A flaw was found in the "Routing decision" classifier in the Linux kernel's Traffic Control networking subsystem in the way it handled changing of classification filters, leading to a use-after-free condition. This flaw allows unprivileged local users to escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ef299cc3fa1a9e1288665a9fdc8bff55629fd359

Affected packages