Lucene search

CVE-2021-27290

🗓️ 12 Mar 2021 22:14:15Reported by [email protected]Type

CVE-2021-27290 SSRI 5.2.2-8.0.0 denail of service vulnerability

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 123
Prion	Design/Logic Flaw	12 Mar 202122:15	–	prion
IBM Security Bulletins	Security Bulletin: IBM Integration Bus & IBM App Connect Enterprise V11 are affected by vulnerabilities in Node.js (CVE-2021-27290)	4 Aug 202107:47	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container images may be vulnerable to Denial of Service attacks due to CVE-2021-23362 and CVE-2021-27290	7 Oct 202110:27	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Node.js-CVE-2021-23362, CVE-2021-22921, CVE-2021-22918, CVE-2021-27290 may affect IBM Watson Assistant for IBM Cloud Pak for Data.	25 Feb 202220:30	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Rational® Application Developer for WebSphere® Software - September 2021	30 Sep 202115:00	–	ibm
IBM Security Bulletins	Security Bulletin: There are multiple vulnerabilites that affect IBM Engineering Requirements Quality Assistant On-Premises (CVE-2021-4104, CVE-2021-29469, CVE-2021-44531, CVE-2021-44531, CVE-2022-21824, CVE-2021-29899, CVE-2021-27290 )	17 Mar 202215:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Use Case Manager app is vulnerable to using components with known vulnerabilities	20 Apr 202214:01	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Dashboards on Cloud Pak for Data has addressed security vulnerabilities	27 Feb 202513:56	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Planning Analytics Workspace is affected by security vulnerabilities	25 Oct 202115:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Node.js affects IBM Netcool Agile Service Manager	1 Jun 202213:37	–	ibm

Nvd

Node

ssri_project ssriRange5.2.2–6.0.2node.js

ssri_project ssriRange7.0.0–8.0.1node.js

Node

oracle graalvmMatch20.3.3enterprise

oracle graalvmMatch21.2.0enterprise

Node

siemens sinec_infrastructure_network_servicesRange<1.0.1.1

Source	Link
doyensec	www.doyensec.com/resources/Doyensec_Advisory_ssri_redos.pdf
github	www.github.com/yetingli/SaveResults/blob/main/pdf/ssri-redos.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
npmjs	www.npmjs.com/
oracle	www.oracle.com/security-alerts/cpuoct2021.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Mar 2021 22:15Current

CVSS24.3

CVSS37.5

EPSS0.02665