CVE-2021-3622

CWE-400 — Uncontrolled Resource Consumption8 documents8 sources

Severity

4.3MEDIUM

EPSS

0.6%

top 31.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Hivex Fedoraproject Fedora Redhat Enterprise Linux +1 more

Timeline

PublishedDec 23

Latest updateDec 24

Description

A flaw was found in the hivex library. This flaw allows an attacker to input a specially crafted Windows Registry (hive) file, which would cause hivex to recursively call the _get_children() function, leading to a stack overflow. The highest threat from this vulnerability is to system availability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:LExploitability: 2.8 | Impact: 1.4

Affected Packages4 packages

▶NVDredhat/hivex< 1.3.21

▶Debianhivex< 1.3.21-1+2

▶CVEListV5hivexhivex-1.3.21

▶NVDredhat/enterprise_linux_workstation7.0

Also affects: Fedora 33, 34, Enterprise Linux 6.0, 7.0, 8.0

Patches

Patch: bugzilla.redhat.com ↗Patch: github.com ↗Patch: listman.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-rc2r-2mcx-6h65: A flaw was found in the hivex library↗2021-12-24

▶

OSV

CVE-2021-3622: A flaw was found in the hivex library↗2021-12-23

▶

CVEList

CVE-2021-3622: A flaw was found in the hivex library↗2021-12-23

▶

💥Exploits & PoCs

Exploit-DB

Cacti 1.2.12 - 'filter' SQL Injection↗2021-04-29

▶

📋Vendor Advisories

Microsoft

A flaw was found in the hivex library. This flaw allows an attacker to input a specially crafted Windows Registry (hive) file which would cause hivex to recursively call the _get_children() function l↗2021-12-14

▶

Red Hat

hivex: stack overflow due to recursive call of _get_children()↗2021-08-02

▶

Debian

CVE-2021-3622: hivex - A flaw was found in the hivex library. This flaw allows an attacker to input a s...↗2021

▶