CVE-2021-43414
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-43414
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue was discovered in GNU Hurd before 0.9 20210404-9. The use of an authentication protocol in the proc server is vulnerable to man-in-the-middle attacks, which can be exploited for local privilege escalation to get full root access.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
GNU Hurd 授权问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Gnu Hurd是自由软件(Free Software)基金会的一个 Gnu 项目对 Unix 内核的替代品。用于实现文件系统、网络协议、文件访问控制以及其他由 Unix 内核或类似内核(如 Linux)实现的功能。 GNU Hurd 存在安全漏洞,该漏洞源于在0.9 20210404-9之前在GNU Hurd中proc服务器中使用身份验证协议很容易受到中间人攻击。攻击者可利用该漏洞来获得完全的根访问权。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2021-43414
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-43414
请登录查看更多情报信息。
- https://www.mail-archive.com/bug-hurd%40gnu.org/msg32114.htmlx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2021-43414
Same Patch Batch · n/a · 2021-11-07 · 5 CVEs total
| CVE-2021-37471 | Cradlepoint IBR900-600 安全漏洞 | |
| CVE-2021-43411 | GNU Hurd 竞争条件问题漏洞 | |
| CVE-2021-43413 | GNU Hurd 安全漏洞 | |
| CVE-2021-43412 | Gnu Hurd 资源管理错误漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8747
Z-BlogPHP Commend Approval c_system_event.php CheckComment i - CVE-2026-8746
Open5GS NRF nghttp2-server.c discover_handler use after free - CVE-2026-8745
Open5GS AUSF nausf-handler.c ogs_timer_add denial of service - CVE-2026-8744
Open5GS NRF context.c ogs_sbi_nf_service_add denial of servi - CVE-2026-8743
Open5GS AMF/MME context.c ran_ue_find_by_amf_ue_ngap_id impr
V. Comments for CVE-2021-43414
No comments yet