VDB
CVE-2021-3673
CVE-2021-3673
PUBLISHED
CVSS 5 MEDIUM
A vulnerability was found in Radare2 in version 5.3.1. Improper input validation when reading a crafted LE binary can lead to resource exhaustion and DoS.
EPSS 0.93% · 76.4th percentile
Risk Scores
CVSS v2.0
5
EPSS Score
0.93%
76.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | radare2 | * |
| fedoraproject | fedora | 34, 35, 33 |
| radare | radare2 | 5.3.1 |
Timeline
- Aug 2, 2021 CVE Published
- Aug 3, 2021 EPSS Score
- Oct 1, 2021 EPSS Score
- Oct 5, 2021 EPSS Score
- Nov 29, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Jan 27, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 27, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 24, 2022 EPSS Score
- Jul 23, 2022 EPSS Score
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1989130 url
- FEDORA-2021-c1a0dc39b4 vendor-advisory
- FEDORA-2021-55198e6804 vendor-advisory
- FEDORA-2021-d206891379 vendor-advisory
- FEDORA-2022-ba3248e596 vendor-advisory
- FEDORA-2022-3fc85cd09c vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-3673 advisory
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IQIRJ72UALGMSWH6MYPVJQQLXFGZ23RS url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIARALLVVY2362AYFSFULTZKIW6QO5R5 url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NFQPEPMLAOQNGZG5OHSPZBNONGG4DDJO url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SKGIB52R4XPCPNEW6GF56EHW7ST24IJU url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XGOU2EFE7YK2YDRNFV6QFUWW2SL2GGQA url