Lucene search

CVE-2021-28678

🗓️ 02 Jun 2021 16:08:15Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 156 Views

An issue discovered in Pillow before 8.2.0 for BLP data, leading to a potential DoS

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 58
OSV	CVE-2021-28678	2 Jun 202116:15	–	osv
OSV	Insufficient Verification of Data Authenticity in Pillow	8 Jun 202118:49	–	osv
OSV	PYSEC-2021-94	2 Jun 202116:15	–	osv
OSV	BIT-pillow-2021-28678	6 Mar 202411:03	–	osv
OSV	SUSE-SU-2024:1607-1 Security update for python-Pillow	10 May 202416:35	–	osv
OSV	pillow vulnerabilities	19 May 202113:54	–	osv
OSV	RHSA-2021:4149 Red Hat Security Advisory: python-pillow security update	14 Sep 202401:23	–	osv
OSV	Moderate: python-pillow security update	9 Nov 202108:24	–	osv
OSV	Moderate: python-pillow security update	9 Nov 202108:24	–	osv
Veracode	Denial Of Service (DoS)	10 May 202104:00	–	veracode

Nvd

Node

python pillowRange<8.2.0

Node

fedoraproject fedoraMatch33

Source	Link
github	www.github.com/python-pillow/Pillow/pull/5377
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MQHA5HAIBOYI3R6HDWCLAGFTIQP767FL/
security	www.security.gentoo.org/glsa/202107-33
pillow	www.pillow.readthedocs.io/en/stable/releasenotes/8.2.0.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Jun 2021 16:15Current

6.8Medium risk

Vulners AI Score6.8

CVSS24.3

CVSS35.5

EPSS0.00375

CWE-345