Out-of-bounds Write Affecting iptables package, versions *


Severity

Recommended
low

Based on Ubuntu security rating

    Threat Intelligence

    EPSS
    0.04% (6th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk ID SNYK-UBUNTU1604-IPTABLES-1148639
  • published 9 Mar 2022
  • disclosed 18 Sep 2020

How to fix?

There is no fixed version for Ubuntu:16.04 iptables.

NVD Description

Note: Versions mentioned in the description apply only to the upstream iptables package and not the iptables package as distributed by Ubuntu. See How to fix? for Ubuntu:16.04 relevant fixed versions and status.

In iptables, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-136658008

CVSS Scores

version 3.1
Expand this section

NVD

6.7 medium
  • Attack Vector (AV)
    Local
  • Attack Complexity (AC)
    Low
  • Privileges Required (PR)
    High
  • User Interaction (UI)
    None
  • Scope (S)
    Unchanged
  • Confidentiality (C)
    High
  • Integrity (I)
    High
  • Availability (A)
    High