CVE-2021-3773

Name

CVE-2021-3773

Description

A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

References

Type	URI
MISC	https://bugzilla.redhat.com/show_bug.cgi?id=2004949
	https://www.oracle.com/security-alerts/cpujul2022.html
	https://citizenlab.ca/2024/07/vulnerabilities-in-vpns-paper-presented-at-the-privacy-enhancing-technologies-symposium-2024/
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20250328-0004/

Match rules

CPE URI	Source package	Min version	Max version
	kernel	== kernel 5.14.0-49.el9, kernel 5.15.15-100.fc34, kernel 5.15.15-200.fc35	== kernel 5.14.0-49.el9, kernel 5.15.15-100.fc34, kernel 5.15.15-200.fc35

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status