# CVE-2021-1048

> In ep_loop_check_proc of eventpoll.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

- **CVSS:** 7.8 (HIGH)
- **EPSS:** 1.3%
- **CISA KEV:** yes
- **CWE:** CWE-416

Canonical: https://intel.threadlinqs.com/cve/CVE-2021-1048
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp