CVE-2020-36516

An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.

CVSS v3 5.9 MEDIUM
CVSS v2.0 4.9 MEDIUM

5.9^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.6 / Impact : 4.2

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact LOW

Scope UNCHANGED

4.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:S/C:N/I:P/A:P

Exploitability : 6.8 / Impact : 4.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://dl.acm.org/doi/10.1145/3372297.3417884	Technical Description Third Party Advisory
https://security.netapp.com/advisory/ntap-20220331-0003/	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:::::::*
	cpe:2.3:a:netapp:e-series_santricity_os_controller::::::::
	cpe:2.3:a:netapp:solidfire\,_enterprise_sds_\&_hci_storage_node:-:::::::*
	cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:::::::*

Configuration 3 (hide)

AND

cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:netapp:h610c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h610c:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:netapp:h615c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h615c:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:netapp:bootstrap_os:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*

History

09 Nov 2023, 14:44

Type	Values Removed	Values Added
First Time		Netapp h410c Netapp h700s Netapp h410s Netapp h700e Netapp h300s Netapp h615c Firmware Netapp h700e Firmware Netapp h500e Netapp h410c Firmware Netapp h610c Firmware Netapp h610c Netapp h300e Netapp h300s Firmware Netapp h500e Firmware Netapp h410s Firmware Netapp h500s Firmware Netapp h700s Firmware Netapp h500s Netapp h610s Firmware Netapp h300e Firmware Netapp h615c Netapp h610s
CPE	cpe:2.3:h:netapp:baseboard_management_controller_h300s:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h700e_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h615c:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h300s_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h700s:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h500s:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h610c_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h610s:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h700s_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h410c_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h610c:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h300e:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h610s_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h615c_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h700e:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h500e:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h410s_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h300e_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h500s_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h410c:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h410s:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h500e_firmware:-:::::::*	cpe:2.3:h:netapp:h410c:-:::::::* cpe:2.3:h:netapp:h700s:-:::::::* cpe:2.3:o:netapp:h410s_firmware:-:::::::* cpe:2.3:h:netapp:h300s:-:::::::* cpe:2.3:o:netapp:h500s_firmware:-:::::::* cpe:2.3:h:netapp:h410s:-:::::::* cpe:2.3:o:netapp:h700e_firmware:-:::::::* cpe:2.3:o:netapp:h300s_firmware:-:::::::* cpe:2.3:o:netapp:h615c_firmware:-:::::::* cpe:2.3:o:netapp:h610s_firmware:-:::::::* cpe:2.3:o:netapp:h700s_firmware:-:::::::* cpe:2.3:h:netapp:h500e:-:::::::* cpe:2.3:h:netapp:h500s:-:::::::* cpe:2.3:h:netapp:h300e:-:::::::* cpe:2.3:o:netapp:h410c_firmware:-:::::::* cpe:2.3:o:netapp:h500e_firmware:-:::::::* cpe:2.3:o:netapp:h610c_firmware:-:::::::* cpe:2.3:h:netapp:h615c:-:::::::* cpe:2.3:h:netapp:h610c:-:::::::* cpe:2.3:h:netapp:h610s:-:::::::* cpe:2.3:h:netapp:h700e:-:::::::* cpe:2.3:o:netapp:h300e_firmware:-:::::::*

05 Jan 2023, 17:26

Type	Values Removed	Values Added
References	~~(CONFIRM) https://security.netapp.com/advisory/ntap-20220331-0003/ -~~	(CONFIRM) https://security.netapp.com/advisory/ntap-20220331-0003/ - Third Party Advisory
CPE		cpe:2.3:a:netapp:solidfire\,_enterprise_sds_\&_hci_storage_node:-:::::::* cpe:2.3:a:netapp:e-series_santricity_os_controller:::::::: cpe:2.3:h:netapp:baseboard_management_controller_h610c:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h615c:-:::::::* cpe:2.3:o:netapp:bootstrap_os:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h610c_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h300e_firmware:-:::::::* cpe:2.3:h:netapp:hci_compute_node:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h300s_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h500s:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h500s_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h700e_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h615c_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h410c:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h410c_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h610s_firmware:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h410s_firmware:-:::::::* cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:::::::* cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h500e_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h410s:-:::::::* cpe:2.3:o:netapp:baseboard_management_controller_h700s_firmware:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h300s:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h300e:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h610s:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h700e:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h500e:-:::::::* cpe:2.3:h:netapp:baseboard_management_controller_h700s:-:::::::*
First Time		Netapp baseboard Management Controller H500e Netapp baseboard Management Controller H410s Netapp baseboard Management Controller H615c Firmware Netapp bootstrap Os Netapp baseboard Management Controller H500e Firmware Netapp solidfire \& Hci Management Node Netapp baseboard Management Controller H610c Netapp solidfire\, Enterprise Sds \& Hci Storage Node Netapp hci Compute Node Netapp baseboard Management Controller H300e Netapp baseboard Management Controller H610c Firmware Netapp baseboard Management Controller H410s Firmware Netapp baseboard Management Controller H700e Netapp baseboard Management Controller H500s Netapp baseboard Management Controller H300s Firmware Netapp cloud Volumes Ontap Mediator Netapp baseboard Management Controller H700s Netapp e-series Santricity Os Controller Netapp Netapp baseboard Management Controller H610s Netapp baseboard Management Controller H700s Firmware Netapp baseboard Management Controller H700e Firmware Netapp baseboard Management Controller H615c Netapp baseboard Management Controller H300s Netapp baseboard Management Controller H500s Firmware Netapp baseboard Management Controller H410c Firmware Netapp baseboard Management Controller H300e Firmware Netapp baseboard Management Controller H410c Netapp baseboard Management Controller H610s Firmware

31 Mar 2022, 09:15

Type	Values Removed	Values Added
References		(CONFIRM) https://security.netapp.com/advisory/ntap-20220331-0003/ -

11 Mar 2022, 17:31

Type	Values Removed	Values Added
CVSS	v2 : ~~5.5~~ v3 : ~~7.1~~	v2 : 4.9 v3 : 5.9

08 Mar 2022, 19:15

Type	Values Removed	Values Added
References	~~(MISC) https://dl.acm.org/doi/10.1145/3372297.3417884 -~~	(MISC) https://dl.acm.org/doi/10.1145/3372297.3417884 - Technical Description, Third Party Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 5.5 v3 : 7.1
First Time		Linux linux Kernel Linux
CWE		CWE-327
CPE		cpe:2.3:o:linux:linux_kernel::::::::

26 Feb 2022, 04:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-02-26 04:15

Updated : 2023-12-10 14:22

NVD link : CVE-2020-36516

Mitre link : CVE-2020-36516

CVE.ORG link : CVE-2020-36516

JSON object : View

Products Affected

netapp

h700s_firmware
h615c_firmware
h700e
h610c
cloud_volumes_ontap_mediator
hci_compute_node
h700e_firmware
h700s
h300s_firmware
h610s
bootstrap_os
h300s
solidfire_\&_hci_management_node
h300e
h500e_firmware
h610s_firmware
h410c_firmware
h610c_firmware
h500s
e-series_santricity_os_controller
h410c
h410s
h615c
solidfire\,_enterprise_sds_\&_hci_storage_node
h410s_firmware
h500s_firmware
h300e_firmware
h500e

linux

linux_kernel

CWE

CWE-327

Use of a Broken or Risky Cryptographic Algorithm

5.9 /10

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact LOW

Scope UNCHANGED

4.9 /10

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2020-36516

5.9^/10

4.9^/10

Attach tags to `CVE-2020-36516`