Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-41500

Опубликовано: 17 дек. 2021
Источник: debian
EPSS Низкий

Описание

Incomplete string comparison vulnerability exits in cvxopt.org cvxop <= 1.2.6 in APIs (cvxopt.cholmod.diag, cvxopt.cholmod.getfactor, cvxopt.cholmod.solve, cvxopt.cholmod.spsolve), which allows attackers to conduct Denial of Service attacks by construct fake Capsule objects.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
cvxoptfixed1.2.7+dfsg-1package
cvxoptno-dsabullseyepackage
cvxoptno-dsabusterpackage
cvxoptno-dsastretchpackage

Примечания

  • https://github.com/cvxopt/cvxopt/issues/193

EPSS

Процентиль: 50%
0.00274
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2021-41500

CVSS3: 7.5
ubuntu
около 4 лет назад

Incomplete string comparison vulnerability exits in cvxopt.org cvxop <= 1.2.6 in APIs (cvxopt.cholmod.diag, cvxopt.cholmod.getfactor, cvxopt.cholmod.solve, cvxopt.cholmod.spsolve), which allows attackers to conduct Denial of Service attacks by construct fake Capsule objects.

nvd логотип

CVE-2021-41500

CVSS3: 7.5
nvd
около 4 лет назад

Incomplete string comparison vulnerability exits in cvxopt.org cvxop <= 1.2.6 in APIs (cvxopt.cholmod.diag, cvxopt.cholmod.getfactor, cvxopt.cholmod.solve, cvxopt.cholmod.spsolve), which allows attackers to conduct Denial of Service attacks by construct fake Capsule objects.

msrc логотип

CVE-2021-41500

msrc
5 месяцев назад

Incomplete string comparison vulnerability exits in cvxopt.org cvxop <= 1.2.6 in APIs (cvxopt.cholmod.diag, cvxopt.cholmod.getfactor, cvxopt.cholmod.solve, cvxopt.cholmod.spsolve), which allows attackers to conduct Denial of Service attacks by construct fake Capsule objects.

github логотип

GHSA-8rh6-h94m-vj54

CVSS3: 7.5
github
около 4 лет назад

Incorrect Comparison in cvxopt

EPSS

Процентиль: 50%
0.00274
Низкий