Lucene search

[email protected]CVE-2021-44961

HistoryMar 01, 2022 - 2:15 a.m.

CVE-2021-44961

2022-03-0102:15:07

CWE-401

[email protected]

web.nvd.nist.gov

cve-2021-44961

slic3r

memory leakage

vulnerability

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.8%

JSON

A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. Specially crafted stl files can exhaust available memory. An attacker can provide malicious files to trigger this vulnerability.

Affected configurations

NVD

Node

slic3rlibslic3rMatch1.3.0

CPENameOperatorVersion
slic3r:libslic3rslic3r libslic3req1.3.0

CPE	Name	Operator	Version
slic3r:libslic3r	slic3r libslic3r	eq	1.3.0

References

libslic3r.com

slic3r.com

hackmd.io/nDT_UKLyRQendxDwil9A4w

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.8%

JSON

Related for CVE-2021-44961

ubuntucve1 debiancve1 nvd1 prion1 cvelist1