CVE-2021-3772 - AskarLabs CVE Database

CVE-2021-3772

Vendor N/A

Product kernel

Weakness CWE-354

Published March 2, 2022

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.

Key dates

02Disclosure timeline

March 2, 2022 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-3772 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/354.html

Related vulnerabilities

04Related CVE

CVE-2026-26928 Lack of Dynamic Library Validation in SzafirHost CVE-2025-4418 AVEVA PI Connector for CygNet Improper Validation of Integrity Check Value CVE-2017-3224 Open Shortest Path First (OSPF) protocol implementations may improperly determine LSA recency in affected Quagga and downstream implementations (SUSE, openSUSE, and Red Hat packages) CVE-2026-26275 httpsig-hyper has Improper Digest Verification that May Allow Message Integrity Bypass CVE-2026-5504 PKCS7 CBC Padding Oracle — Plaintext Recovery