CVE-2021-22566Incorrect Permission Assignment in LLC Fuchsia

CWE-275CWE-732Incorrect Permission AssignmentCWE-287Improper Authentication3 documents3 sources
Severity
5.1MEDIUMNVD
EPSS
0.0%
top 97.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google LLC Fuchsia
Timeline
PublishedJan 18
Latest updateJan 19

Description

An incorrect setting of UXN bits within mmu_flags_to_s1_pte_attr lead to privileged executable pages being mapped as executable from an unprivileged context. This can be leveraged by an attacker to bypass executability restrictions of kernel-mode pages from user-mode. An incorrect setting of PXN bits within mmu_flags_to_s1_pte_attr lead to unprivileged executable pages being mapped as executable from a privileged context. This can be leveraged by an attacker to bypass executability restrictions

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N

Affected Packages1 packages

CVEListV5google_llc/fuchsia< 7d731b4e9599088ac3073956933559da7bca6a00

Patches

Patch: fuchsia.googlesource.comPatch: fuchsia.googlesource.com

🔴Vulnerability Details

2
GHSA
GHSA-q77g-rg5g-rf78: An incorrect setting of UXN bits within mmu_flags_to_s1_pte_attr lead to privileged executable pages being mapped as executable from an unprivileged c2022-01-19
CVEList
Incorrect mapping of Executable bits in Fuchsia Kernel2022-01-18
CVE-2021-22566 — Incorrect Permission Assignment | cvebase