IM
IronMonkey Threat Research

CVE-2021-3517 HIGH

Published: 2021-05-19 | Last Modified: 2025-12-02 | Status: Modified

Description

There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application.

Additional Descriptions (1)

Se presenta un fallo en la funcionalidad xml entity encoding de libxml2 en versiones anteriores a 2.9.11. Un atacante que sea capaz de proporcionar un archivo diseñado para que sea procesado por una aplicación vinculada con la funcionalidad afectada de libxml2 podría desencadenar una lectura fuera de los límites. El impacto más probable de este fallo es la disponibilidad de la aplicación, con algún impacto potencial en la confidencialidad e integridad si un atacante puede usar la información de la memoria para explotar aún más la aplicación

CVSS Metrics

Base Score: 8.6 (HIGH)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Attack VectorNETWORK
Attack ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactLOW
Integrity ImpactLOW
Availability ImpactHIGH

Source: [email protected]

Type: Primary

Exploitability Score: 3.9

Impact Score: 4.7

Base Score: 7.5 (HIGH)

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL

Source: [email protected]

Type: Primary

Exploitability Score: 10.0

Impact Score: 6.4

Weaknesses

Source Type Description
[email protected] Secondary
en CWE-787
[email protected] Secondary
en CWE-787
134c704f-9b21-4f2e-91b3-4a467353bcc0 Secondary
en CWE-125

Affected Products

Vendor Product Version Update Type
xmlsoft libxml2 * <built-in method update of dict object at 0x72a9b0ca6340> Application
redhat jboss_core_services - <built-in method update of dict object at 0x72a9b0b11500> Application
redhat enterprise_linux 8.0 <built-in method update of dict object at 0x72a9b0cd7300> Operating System
fedoraproject fedora 33 <built-in method update of dict object at 0x72a9b0b11240> Operating System
fedoraproject fedora 34 <built-in method update of dict object at 0x72a9b0ca7580> Operating System
debian debian_linux 9.0 <built-in method update of dict object at 0x72a9b0ca5040> Operating System
netapp active_iq_unified_manager - <built-in method update of dict object at 0x72a961ec8380> Application
netapp active_iq_unified_manager - <built-in method update of dict object at 0x72a9b0cd7640> Application
netapp clustered_data_ontap - <built-in method update of dict object at 0x72a9b0b11440> Application
netapp clustered_data_ontap_antivirus_connector - <built-in method update of dict object at 0x72a9b0ca7b80> Application
netapp e-series_santricity_os_controller * <built-in method update of dict object at 0x72a9b0b11ec0> Application
netapp e-series_santricity_storage_manager - <built-in method update of dict object at 0x72a9b0b12ac0> Application
netapp e-series_santricity_web_services - <built-in method update of dict object at 0x72a9b0b13ac0> Application
netapp hci_management_node - <built-in method update of dict object at 0x72a9b0b10500> Application
netapp manageability_software_development_kit - <built-in method update of dict object at 0x72a961ecbbc0> Application
netapp oncommand_insight - <built-in method update of dict object at 0x72a9b0cd53c0> Application
netapp oncommand_workflow_automation - <built-in method update of dict object at 0x72a961ecaf80> Application
netapp ontap_select_deploy_administration_utility - <built-in method update of dict object at 0x72a9b0e0ee00> Application
netapp santricity_unified_manager - <built-in method update of dict object at 0x72a9cc7826c0> Application
netapp snapdrive - <built-in method update of dict object at 0x72a9cc782780> Application
netapp snapmanager - <built-in method update of dict object at 0x72a9b0e0f400> Application
netapp snapmanager - <built-in method update of dict object at 0x72a9b0e0e8c0> Application
netapp solidfire - <built-in method update of dict object at 0x72a9cc52f700> Application
netapp hci_h410c_firmware - <built-in method update of dict object at 0x72a961ec3b00> Operating System
oracle communications_cloud_native_core_network_function_cloud_native_environment 1.10.0 <built-in method update of dict object at 0x72a961ec0500> Application
oracle enterprise_manager_base_platform 13.4.0.0 <built-in method update of dict object at 0x72a961ec2e80> Application
oracle enterprise_manager_base_platform 13.5.0.0 <built-in method update of dict object at 0x72a961ec1180> Application
oracle mysql_workbench * <built-in method update of dict object at 0x72a961ec0b80> Application
oracle openjdk 8 <built-in method update of dict object at 0x72a961ec00c0> Application
oracle peoplesoft_enterprise_peopletools 8.58 <built-in method update of dict object at 0x72a961ec3480> Application
oracle real_user_experience_insight 13.4.1.0 <built-in method update of dict object at 0x72a961ec1e80> Application
oracle real_user_experience_insight 13.5.1.0 <built-in method update of dict object at 0x72a9b0b12ec0> Application
oracle zfs_storage_appliance_kit 8.8 <built-in method update of dict object at 0x72a9e4184600> Application

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:redhat:jboss_core_services:-:*:*:*:*:*:*:*
Yes cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
Yes cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
Yes cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*
Yes cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:clustered_data_ontap_antivirus_connector:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*
Yes cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:manageability_software_development_kit:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*
Yes cpe:2.3:a:netapp:snapdrive:-:*:*:*:*:windows:*:*
Yes cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*
Yes cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*
Yes cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:netapp:hci_h410c_firmware:-:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
No cpe:2.3:h:netapp:hci_h410c:-:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:oracle:enterprise_manager_base_platform:13.5.0.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:oracle:openjdk:8:update301:*:*:*:*:*:*
Yes cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*
Yes cpe:2.3:a:oracle:real_user_experience_insight:13.4.1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:oracle:real_user_experience_insight:13.5.1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*

References

Notification
Message here