CVE-2021-44917 — Divide By Zero in Gnuplot

CWE-369 — Divide By Zero7 documents6 sources

Severity

5.5MEDIUMNVD

OSV7.8

EPSS

0.2%

top 63.45%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gnuplot Debian Gnuplot

Timeline

PublishedDec 21

Latest updateJun 23

Description

A Divide by Zero vulnerability exists in gnuplot 5.4 in the boundary3d function in graph3d.c, which could cause a Arithmetic exception and application crash.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/gnuplot< gnuplot 5.4.2+dfsg2-2 (bookworm)

▶Debiangnuplot/gnuplot< 5.4.1+dfsg1-1+deb11u1+3

▶Ubuntugnuplot/gnuplot< 4.6.4-2ubuntu0.1~esm1+3

▶NVDgnuplot/gnuplot5.4

🔴Vulnerability Details

OSV

gnuplot vulnerabilities↗2025-06-23

▶

GHSA

GHSA-54h4-5526-7jv6: A Divide by Zero vulnerability exists in gnuplot 5↗2021-12-22

▶

OSV

CVE-2021-44917: A Divide by Zero vulnerability exists in gnuplot 5↗2021-12-21

▶

📋Vendor Advisories

Ubuntu

Gnuplot vulnerabilities↗2025-06-23

▶

Red Hat

gnuplot: Divide by Zero in the boundary3d function in graph3d.c↗2021-12-21

▶

Debian

CVE-2021-44917: gnuplot - A Divide by Zero vulnerability exists in gnuplot 5.4 in the boundary3d function ...↗2021

▶