{"dataType":"CVE_RECORD","cveMetadata":{"cveId":"CVE-2021-33630","assignerOrgId":"7e1ac599-2767-43fa-b3ea-f10178cc98f2","state":"PUBLISHED","assignerShortName":"openEuler","dateReserved":"2021-05-28T14:26:05.940Z","datePublished":"2024-01-18T15:00:49.312Z","dateUpdated":"2025-05-07T20:14:53.453Z"},"containers":{"cna":{"affected":[{"collectionURL":"https://gitee.com/src-openeuler","defaultStatus":"unaffected","modules":["network"],"packageName":"kernel","platforms":["Linux"],"product":"kernel","programFiles":["https://gitee.com/openeuler/kernel/blob/openEuler-1.0-LTS/net/sched/sch_cbs.c"],"repo":"https://gitee.com/src-openeuler/kernel","vendor":"openEuler","versions":[{"changes":[{"at":"b2239f607df25fc401179e6dd4b7406f942a7632 net/sched: cbs: Fix not adding cbs instance to list","status":"unaffected"}],"lessThan":"4.19.90-2401.3","status":"affected","version":"4.19.90","versionType":"git"}]}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"NULL Pointer Dereference vulnerability in openEuler kernel on Linux (network modules) allows Pointer Manipulation.<p> This vulnerability is associated with program files <tt>net/sched/sch_cbs.C</tt>.</p><p>This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3.</p>"}],"value":"NULL Pointer Dereference vulnerability in openEuler kernel on Linux (network modules) allows Pointer Manipulation. This vulnerability is associated with program files net/sched/sch_cbs.C.\n\nThis issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3."}],"impacts":[{"capecId":"CAPEC-129","descriptions":[{"lang":"en","value":"CAPEC-129 Pointer Manipulation"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"LOCAL","availabilityImpact":"HIGH","baseScore":5.5,"baseSeverity":"MEDIUM","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-476","description":"CWE-476 NULL Pointer Dereference","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"7e1ac599-2767-43fa-b3ea-f10178cc98f2","shortName":"openEuler","dateUpdated":"2024-06-27T12:09:01.557Z"},"references":[{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030"},{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031"},{"url":"https://gitee.com/src-openeuler/kernel/pulls/1389"},{"url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3e8b9bfa110896f95d602d8c98d5f9d67e41d78c"},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/3"},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/4"},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/5"},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/9"},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/10"},{"url":"http://www.openwall.com/lists/oss-security/2024/01/31/3"},{"url":"http://www.openwall.com/lists/oss-security/2024/01/31/2"},{"url":"http://www.openwall.com/lists/oss-security/2024/02/02/6"},{"url":"http://www.openwall.com/lists/oss-security/2024/02/02/9"},{"url":"http://www.openwall.com/lists/oss-security/2024/02/03/1"},{"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"}],"source":{"discovery":"UNKNOWN"},"title":"NULL-ptr-deref in network sched","x_generator":{"engine":"Vulnogram 0.1.0-dev"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T23:58:21.572Z"},"title":"CVE Program Container","references":[{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1030","tags":["x_transferred"]},{"url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1031","tags":["x_transferred"]},{"url":"https://gitee.com/src-openeuler/kernel/pulls/1389","tags":["x_transferred"]},{"url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3e8b9bfa110896f95d602d8c98d5f9d67e41d78c","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/3","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/4","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/5","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/9","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/01/30/10","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/01/31/3","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/01/31/2","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/02/02/6","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/02/02/9","tags":["x_transferred"]},{"url":"http://www.openwall.com/lists/oss-security/2024/02/03/1","tags":["x_transferred"]},{"url":"https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html","tags":["x_transferred"]}]},{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-05-07T20:14:40.648453Z","id":"CVE-2021-33630","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-05-07T20:14:53.453Z"}}]},"dataVersion":"5.1"}