CVE-2021-42376 - CERT CVE
ID CVE-2021-42376
Sažetak A NULL pointer dereference in Busybox's hush applet leads to denial of service when processing a crafted shell command, due to missing validation after a \x03 delimiter character. This may be used for DoS under very rare conditions of filtered command input.
Reference
CVSS
Base: 1.9
Impact: 2.9
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE PARTIAL
CVSS vektor AV:L/AC:M/Au:N/C:N/I:N/A:P
Zadnje važnije ažuriranje 07-11-2023 - 03:39
Objavljeno 15-11-2021 - 21:15