CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-33574

The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2021-33574

Gnu » Glibc » Version: 2.32

cpe:2.3:a:gnu:glibc:2.32
Gnu » Glibc » Version: 2.33

cpe:2.3:a:gnu:glibc:2.33
Netapp » Cloud Backup » Version: N/A

cpe:2.3:a:netapp:cloud_backup:-
Netapp » E-Series Santricity Os Controller » Version: 11.0

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.0
Netapp » E-Series Santricity Os Controller » Version: 11.0.0

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.0.0
Netapp » E-Series Santricity Os Controller » Version: 11.20

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.20
Netapp » E-Series Santricity Os Controller » Version: 11.25

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.25
Netapp » E-Series Santricity Os Controller » Version: 11.30

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.30
Netapp » E-Series Santricity Os Controller » Version: 11.30.5r3

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.30.5r3
Netapp » E-Series Santricity Os Controller » Version: 11.40

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40
Netapp » E-Series Santricity Os Controller » Version: 11.40.3r2

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40.3r2
Netapp » E-Series Santricity Os Controller » Version: 11.40.5

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.40.5
Netapp » E-Series Santricity Os Controller » Version: 11.50.1

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.1
Netapp » E-Series Santricity Os Controller » Version: 11.50.2

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.50.2
Netapp » E-Series Santricity Os Controller » Version: 11.60

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60
Netapp » E-Series Santricity Os Controller » Version: 11.60.0

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.0
Netapp » E-Series Santricity Os Controller » Version: 11.60.1

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.1
Netapp » E-Series Santricity Os Controller » Version: 11.60.3

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.60.3
Netapp » E-Series Santricity Os Controller » Version: 11.70.1

cpe:2.3:a:netapp:e-series_santricity_os_controller:11.70.1
Netapp » H300e » Version: N/A

cpe:2.3:h:netapp:h300e:-
Netapp » H300s » Version: N/A

cpe:2.3:h:netapp:h300s:-
Netapp » H410s » Version: N/A

cpe:2.3:h:netapp:h410s:-
Netapp » H500e » Version: N/A

cpe:2.3:h:netapp:h500e:-
Netapp » H500s » Version: N/A

cpe:2.3:h:netapp:h500s:-
Netapp » H700e » Version: N/A

cpe:2.3:h:netapp:h700e:-
Netapp » H700s » Version: N/A

cpe:2.3:h:netapp:h700s:-
Debian » Debian Linux » Version: 10.0

cpe:2.3:o:debian:debian_linux:10.0
Fedoraproject » Fedora » Version: 33

cpe:2.3:o:fedoraproject:fedora:33
Fedoraproject » Fedora » Version: 34

cpe:2.3:o:fedoraproject:fedora:34
Netapp » H300e Firmware » Version: N/A

cpe:2.3:o:netapp:h300e_firmware:-
Netapp » H300s Firmware » Version: N/A

cpe:2.3:o:netapp:h300s_firmware:-
Netapp » H410s Firmware » Version: N/A

cpe:2.3:o:netapp:h410s_firmware:-
Netapp » H500e Firmware » Version: N/A

cpe:2.3:o:netapp:h500e_firmware:-
Netapp » H500s Firmware » Version: N/A

cpe:2.3:o:netapp:h500s_firmware:-
Netapp » H700e Firmware » Version: N/A

cpe:2.3:o:netapp:h700e_firmware:-
Netapp » H700s Firmware » Version: N/A

cpe:2.3:o:netapp:h700s_firmware:-
Netapp » Solidfire Baseboard Management Controller Firmware » Version: N/A

cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-33574

Products

Pricing

Contact Us