CVE-2021-27506
CVSS 5.5 - MEDIUM
Description
The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19, 3.11.7 and 4.2.1.
Affected Products
3| Vendor | Product | Version |
|---|---|---|
| netasq_project | netasq |
All versions
|
| stormshield | stormshield_network_security |
All versions
|
| clamav | clamav |
All versions
|
References
Weakness Types
NVD-CWE-noinfo
CVE Information
- CVE ID:
CVE-2021-27506- Published:
- 2021-03-19
- Modified:
- 2024-11-21
- CVSS Score:
- 5.5
- Severity:
- MEDIUM
- Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Vendors
clamav
netasq_project
stormshield
Quick Actions
CVSS Severity Scale
0.0 - 3.9
LOW
4.0 - 6.9
MEDIUM
7.0 - 8.9
HIGH
9.0 - 10.0
CRITICAL