Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-x18q-2c1r-x3de
Vulnerability ID VCID-x18q-2c1r-x3de
Aliases CVE-2021-3347
Summary An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel, aka CID-34b1a1ce1458.
Status Published
Exploitability 0.5
Weighted Severity 6.3
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-416 Use After Free
System Score Found at
cvssv3 7.0 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3347.json
epss 0.002 https://api.first.org/data/v1/epss?cve=CVE-2021-3347
archlinux Medium https://security.archlinux.org/AVG-1506
archlinux Medium https://security.archlinux.org/AVG-1507
archlinux Medium https://security.archlinux.org/AVG-1508
archlinux Medium https://security.archlinux.org/AVG-1509
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3347.json
https://api.first.org/data/v1/epss?cve=CVE-2021-3347
1922249 https://bugzilla.redhat.com/show_bug.cgi?id=1922249
ASA-202102-23 https://security.archlinux.org/ASA-202102-23
AVG-1506 https://security.archlinux.org/AVG-1506
AVG-1507 https://security.archlinux.org/AVG-1507
AVG-1508 https://security.archlinux.org/AVG-1508
AVG-1509 https://security.archlinux.org/AVG-1509
RHSA-2021:1081 https://access.redhat.com/errata/RHSA-2021:1081
RHSA-2021:1093 https://access.redhat.com/errata/RHSA-2021:1093
RHSA-2021:1272 https://access.redhat.com/errata/RHSA-2021:1272
RHSA-2021:1279 https://access.redhat.com/errata/RHSA-2021:1279
RHSA-2021:1295 https://access.redhat.com/errata/RHSA-2021:1295
RHSA-2021:1379 https://access.redhat.com/errata/RHSA-2021:1379
RHSA-2021:2099 https://access.redhat.com/errata/RHSA-2021:2099
RHSA-2021:2106 https://access.redhat.com/errata/RHSA-2021:2106
RHSA-2021:2285 https://access.redhat.com/errata/RHSA-2021:2285
RHSA-2021:2314 https://access.redhat.com/errata/RHSA-2021:2314
RHSA-2021:2316 https://access.redhat.com/errata/RHSA-2021:2316
RHSA-2021:2730 https://access.redhat.com/errata/RHSA-2021:2730
RHSA-2021:2731 https://access.redhat.com/errata/RHSA-2021:2731
RHSA-2021:2732 https://access.redhat.com/errata/RHSA-2021:2732
RHSA-2021:2733 https://access.redhat.com/errata/RHSA-2021:2733
RHSA-2021:2735 https://access.redhat.com/errata/RHSA-2021:2735
RHSA-2021:3399 https://access.redhat.com/errata/RHSA-2021:3399
RHSA-2021:3522 https://access.redhat.com/errata/RHSA-2021:3522
RHSA-2021:3523 https://access.redhat.com/errata/RHSA-2021:3523
No exploits are available.
Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3347.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.41988
EPSS Score 0.002
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T16:43:34.162649+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0