ID
VAR-202109-0974
CVE
CVE-2021-39532
TITLE
libslax In NULL Pointer dereference vulnerability
Trust: 0.8
sources:
JVNDB: JVNDB-2021-012466
DESCRIPTION
An issue was discovered in libslax through v0.22.1. A NULL pointer dereference exists in the function slaxLexer() located in slaxlexer.c. It allows an attacker to cause Denial of Service. libslax for, NULL There is a vulnerability in pointer dereference.Service operation interruption (DoS) It may be in a state. libslax is an open source implementation of the SLAX language. There is a code problem vulnerability in libslax
Trust: 1.8
sources:
NVD: CVE-2021-39532 //
JVNDB: JVNDB-2021-012466 //
VULHUB: VHN-400996 //
VULMON: CVE-2021-39532
AFFECTED PRODUCTS
| vendor: | juniper | model: | libslax | scope: | lte | version: | 0.22.1 | Trust: 1.0 |
| vendor: | ジュニパーネットワークス | model: | libslax | scope: | eq | version: | 0.22.1 to | Trust: 0.8 |
| vendor: | ジュニパーネットワークス | model: | libslax | scope: | eq | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2021-012466 //
NVD: CVE-2021-39532
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
VULHUB: VHN-400996 //
VULMON: CVE-2021-39532 //
JVNDB: JVNDB-2021-012466 //
CNNVD: CNNVD-202109-1384 //
NVD: CVE-2021-39532
PROBLEMTYPE DATA
| problemtype: | CWE-476 | Trust: 1.1 |
| problemtype: | NULL Pointer dereference (CWE-476) [NVD evaluation ] | Trust: 0.8 |
sources:
VULHUB: VHN-400996 //
JVNDB: JVNDB-2021-012466 //
NVD: CVE-2021-39532
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202109-1384
TYPE
code problem
Trust: 0.6
sources:
CNNVD: CNNVD-202109-1384
PATCH
| title: | 13 #50 | url: | https://github.com/Juniper/libslax/issues/50 | Trust: 0.8 |
| title: | libslax Fixes for code issue vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=164718 | Trust: 0.6 |
sources:
JVNDB: JVNDB-2021-012466 //
CNNVD: CNNVD-202109-1384
EXTERNAL IDS
| db: | NVD | id: | CVE-2021-39532 | Trust: 3.4 |
| db: | JVNDB | id: | JVNDB-2021-012466 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202109-1384 | Trust: 0.6 |
| db: | CNVD | id: | CNVD-2022-19081 | Trust: 0.1 |
| db: | VULHUB | id: | VHN-400996 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2021-39532 | Trust: 0.1 |
sources:
VULHUB: VHN-400996 //
VULMON: CVE-2021-39532 //
JVNDB: JVNDB-2021-012466 //
CNNVD: CNNVD-202109-1384 //
NVD: CVE-2021-39532
REFERENCES
| url: | https://github.com/juniper/libslax/issues/50 | Trust: 1.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2021-39532 | Trust: 1.4 |
| url: | https://cwe.mitre.org/data/definitions/476.html | Trust: 0.1 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
sources:
VULHUB: VHN-400996 //
VULMON: CVE-2021-39532 //
JVNDB: JVNDB-2021-012466 //
CNNVD: CNNVD-202109-1384 //
NVD: CVE-2021-39532
SOURCES
| db: | VULHUB | id: | VHN-400996 |
| db: | VULMON | id: | CVE-2021-39532 |
| db: | JVNDB | id: | JVNDB-2021-012466 |
| db: | CNNVD | id: | CNNVD-202109-1384 |
| db: | NVD | id: | CVE-2021-39532 |
LAST UPDATE DATE
2024-08-14T13:43:23.873000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-400996 | date: | 2021-10-02T00:00:00 |
| db: | VULMON | id: | CVE-2021-39532 | date: | 2021-10-02T00:00:00 |
| db: | JVNDB | id: | JVNDB-2021-012466 | date: | 2022-08-31T08:57:00 |
| db: | CNNVD | id: | CNNVD-202109-1384 | date: | 2021-10-09T00:00:00 |
| db: | NVD | id: | CVE-2021-39532 | date: | 2021-10-02T02:18:45.870 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-400996 | date: | 2021-09-20T00:00:00 |
| db: | VULMON | id: | CVE-2021-39532 | date: | 2021-09-20T00:00:00 |
| db: | JVNDB | id: | JVNDB-2021-012466 | date: | 2022-08-31T00:00:00 |
| db: | CNNVD | id: | CNNVD-202109-1384 | date: | 2021-09-20T00:00:00 |
| db: | NVD | id: | CVE-2021-39532 | date: | 2021-09-20T16:15:12.253 |