CVE Database · CVE-2009-3547
CVSS v3.1
7.0
EPSS
4.93%
Published
Nov 4, 2009
Modified
Apr 22, 2026
Public PoC / Exploit (6)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HWeaknesses (CWE)
Affected Products (32)
References (20)