CVE-2021-27506
Summary
| CVE | CVE-2021-27506 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-03-19 15:15:00 UTC |
| Updated | 2022-07-01 12:02:00 UTC |
| Description | The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19, 3.11.7 and 4.2.1. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Clamav | Clamav | All | All | All | All |
| Application | Netasq Project | Netasq | All | All | All | All |
| Application | Stormshield | Network Security | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| ClamAV® blog: ClamAV 0.103.1 patch release | MISC | blog.clamav.net | |
| 404 Not Found | CONFIRM | advisories.stormshield.eu | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.