CVE-2021-45429 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-45429 PUBLISHED CVSS 4.300000190734863 MEDIUM

A Buffer Overflow vulnerablity exists in VirusTotal YARA git commit: 605b2edf07ed8eb9a2c61ba22eb2e7c362f47ba7 via yr_set_configuration in yara/libyara/libyara.c, which could cause a Denial of Service.

EPSS 0.08% · 24.2th percentile

Risk Scores

CVSS v2.0

4.300000190734863

EPSS Score

0.08%

24.2th percentile

Affected Products

Vendor	Product	Versions
virustotal	yara	0
n/a	n/a	n/a

Timeline

Feb 4, 2022 CVE Published
Feb 4, 2022 PoC Published
Feb 8, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 23, 2022 EPSS Score
Jul 15, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 17, 2022 EPSS Score
Feb 7, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 31, 2023 EPSS Score

References

https://www.ibm.com/support/pages/node/7173421 advisory
https://www.ibm.com/support/pages/node/7173043 advisory
https://www.ibm.com/support/pages/node/7173420 advisory
https://www.ibm.com/support/pages/node/7173226 advisory
https://www.ibm.com/support/pages/node/7173224 advisory
https://www.ibm.com/support/pages/node/7173097 advisory
https://github.com/VirusTotal/yara/issues/1616 url
https://nvd.nist.gov/vuln/detail/CVE-2021-45429 advisory

Open in Interactive Console →