Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2021-46828
HistoryJul 20, 2022 - 6:15 a.m.

CVE-2021-46828

2022-07-2006:15:00
CWE-755
CWE-835
[email protected]
web.nvd.nist.gov
292
14
cve-2021-46828
remote code execution
libtirpc
file descriptor exhaustion
nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

76.6%

JSON

In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can, in turn, lead to an svc_run infinite loop without accepting new connections.

Social References

More

Related

prion 1
nessus 25
openvas 19
cbl_mariner 2
cvelist 1
veracode 1
oraclelinux 1
ubuntu 1
debiancve 1
suse 1
rosalinux 1
redhatcve 1
alpinelinux 1
osv 6
almalinux 1
redhat 2
rocky 2
ubuntucve 1
redos 1
debian 2
gentoo 1
mageia 1
photon 4
ics 2
ibm 2
avleonov 1
prion
prion
Code injection
2022-07-20 06:15:00
nessus
nessus
RHEL 9 : libtirpc (RHSA-2022:8400)
2022-11-16 00:00:00
EulerOS 2.0 SP10 : libtirpc (EulerOS-SA-2022-2690)
2022-11-02 00:00:00
Siemens SCALANCE XCM332 Allocation of Resources Without Limits or Throttling (CVE-2021-46828)
2023-05-02 00:00:00
openvas
openvas
openSUSE: Security Advisory for libtirpc (SUSE-SU-2022:3305-1)
2022-09-20 00:00:00
Huawei EulerOS: Security Advisory for libtirpc (EulerOS-SA-2022-2298)
2022-09-14 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3791-1)
2022-10-28 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-46828 affecting package libtirpc 1.3.3-1
2024-06-01 21:07:45
CVE-2021-46828 affecting package libtirpc 1.1.4-4
2022-09-17 05:56:35
cvelist
cvelist
CVE-2021-46828
2022-07-20 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-07-20 11:06:47
oraclelinux
oraclelinux
libtirpc security update
2022-11-22 00:00:00
ubuntu
ubuntu
libtirpc vulnerability
2022-07-28 00:00:00
debiancve
debiancve
CVE-2021-46828
2022-07-20 06:15:00
suse
suse
Security update for libtirpc (important)
2022-09-19 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2339
2024-02-06 08:17:10
redhatcve
redhatcve
CVE-2021-46828
2022-07-21 07:45:33
alpinelinux
alpinelinux
CVE-2021-46828
2022-07-20 06:15:00
osv
osv
libtirpc - security update
2022-08-11 00:00:00
CVE-2021-46828
2022-07-20 06:15:07
libtirpc vulnerability
2022-07-28 14:40:41
almalinux
almalinux
Moderate: libtirpc security update
2022-11-15 00:00:00
redhat
redhat
(RHSA-2022:8400) Moderate: libtirpc security update
2022-11-15 06:23:29
(RHSA-2023:3742) Important: Red Hat OpenShift Data Foundation 4.13.0 security and bug fix update
2023-06-21 15:20:50
rocky
rocky
libtirpc security update
2022-11-15 06:23:29
libtirpc bug fix and enhancement update
2022-05-10 08:15:03
ubuntucve
ubuntucve
CVE-2021-46828
2022-07-20 00:00:00
redos
redos
ROS-20240403-03
2024-04-03 00:00:00
debian
debian
[SECURITY] [DLA 3071-1] libtirpc security update
2022-08-12 09:50:12
[SECURITY] [DSA 5200-1] libtirpc security update
2022-08-07 08:56:53
gentoo
gentoo
Libtirpc: Denial of Service
2022-10-31 00:00:00
mageia
mageia
Updated libitrpc packages fix security vulnerability
2022-08-20 13:04:13
photon
photon
Important Photon OS Security Update - PHSA-2022-0504
2022-08-06 00:00:00
Important Photon OS Security Update - PHSA-2022-0224
2022-08-06 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0431
2022-08-09 00:00:00
ics
ics
Siemens SCALANCE XCM332
2023-04-13 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
ibm
ibm
Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from curl, systemd, and Golang Go
2022-09-28 09:47:09
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps
2023-07-31 09:28:35
avleonov
avleonov
Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs
2022-12-30 18:03:13

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.2 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

76.6%

JSON
Related for CVE-2021-46828
prion1nessus25openvas19cbl_mariner2cvelist1veracode1oraclelinux1ubuntu1debiancve1suse1rosalinux1redhatcve1alpinelinux1osv6almalinux1redhat2rocky2ubuntucve1redos1debian2gentoo1mageia1photon4ics2ibm2avleonov1