Home > Vulnerability Database > CVE-2021-20322

Mend.io Vulnerability Database

CVE-2021-20322

Date: February 18, 2022

A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.

Severity Score

7.4

Related Resources (14)

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2014230

Url: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ipv6/route.c?h=v5.15-rc6&id=a00df2caffed3883c341d5685f830434312e4a43

Url: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ipv4/route.c?h=v5.15-rc6&id=67d6d681e15b578c1725bad8ad079e05d1c48a8e

Url: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15-rc6&id=6457378fe796815c973f631a1904e147d6ee33b1

Url: https://security.netapp.com/advisory/ntap-20220303-0002/

Url: https://security-tracker.debian.org/tracker/CVE-2021-20322

Url: https://nvd.nist.gov/vuln/detail/CVE-2021-20322

Url: https://access.redhat.com/security/cve/CVE-2021-20322

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2021-20322

Url: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15-rc6&id=4785305c05b25a242e5314cc821f54ade4c18810

Url: https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html

Url: https://www.debian.org/security/2022/dsa-5096

Url: https://www.oracle.com/security-alerts/cpujul2022.html

Url: https://www.mend.io/vulnerability-database/CVE-2021-20322

Severity Score

7.4

Weakness Type (CWE)

Use of Insufficiently Random Values

CWE-330

CVSS v3.1

Base Score:	7.4
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	NONE

CVSS v2

Base Score:	5.8
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2021-20322

Date: February 18, 2022

Severity Score

Related Resources (14)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?