The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19, 3.11.7 and 4.2.1.
References
Link | Resource |
---|---|
https://advisories.stormshield.eu/2021-003/ | Broken Link Vendor Advisory |
https://blog.clamav.net/2021/02/clamav-01031-patch-release.html | Vendor Advisory |
Configurations
History
01 Jul 2022, 12:02
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:netasq_project:netasq:*:*:*:*:*:*:*:* | |
First Time |
Netasq Project
Netasq Project netasq |
12 Apr 2021, 16:15
Type | Values Removed | Values Added |
---|---|---|
Summary | The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19, 3.11.7 and 4.2.1. |
24 Mar 2021, 16:31
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:stormshield:network_security:*:*:*:*:*:*:*:* cpe:2.3:a:clamav:clamav:*:*:*:*:*:*:*:* |
|
CWE | NVD-CWE-noinfo | |
References | (MISC) https://blog.clamav.net/2021/02/clamav-01031-patch-release.html - Vendor Advisory | |
References | (CONFIRM) https://advisories.stormshield.eu/2021-003/ - Broken Link, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 5.5 |
22 Mar 2021, 12:15
Type | Values Removed | Values Added |
---|---|---|
Summary | The ClamAV Engine (Version 0.103.1 and below) embedded in Storsmshield Network Security (1.0 to 4.1.5) is subject to DoS in case of parsing of malformed png files. | |
References |
|
19 Mar 2021, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-03-19 15:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-27506
Mitre link : CVE-2021-27506
CVE.ORG link : CVE-2021-27506
JSON object : View
Products Affected
netasq_project
- netasq
stormshield
- network_security
clamav
- clamav
CWE