CVE-2021-4197
HighAn unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1 versions of control groups. A local user could use this flaw to crash the system or escalate their privileges on the system.
CVSS 3.1 score
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness type
CWE-287CVE-2021-4197 is classified as CWE-287
See CWE-287 on MITRE CWE for full details on this weakness type.
References
The following references provide additional information about CVE-2021-4197 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.
-
Issue Tracking Third Party Advisory
-
-
Third Party Advisory
-
Debian Securityhttps://www.debian.org/security/2022/dsa-5127Third Party Advisory
-
Debian Securityhttps://www.debian.org/security/2022/dsa-5173Third Party Advisory
-
Third Party Advisory
Frequently asked questions
-
What is CVE-2021-4197?
CVE-2021-4197 is a High severity Linux kernel vulnerability with a CVSS score of 7.8 out of 10 . CVE-2021-4197 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
-
What is the CVSS score for CVE-2021-4197?
CVE-2021-4197 has a CVSS score of 7.8 out of 10, rated High severity (CVSS 3.1). The vector string is
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. -
Is there a patch available for CVE-2021-4197?
No patch is currently available for CVE-2021-4197. Monitor the NIST NVD and your Linux distribution's security advisories for updates.
-
Is CVE-2021-4197 actively exploited?
No — CVE-2021-4197 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.