Lucene search

MitreCVE-2021-44961

HistoryMar 01, 2022 - 2:15 a.m.

CVE-2021-44961

2022-03-0102:15:07

CWE-401

mitre

web.nvd.nist.gov

cve-2021-44961

slic3r

memory leakage

vulnerability

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

41.7%

JSON

A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. Specially crafted stl files can exhaust available memory. An attacker can provide malicious files to trigger this vulnerability.

Affected configurations

Nvd

Node

slic3rlibslic3rMatch1.3.0

VendorProductVersionCPE
slic3rlibslic3r1.3.0cpe:2.3:a:slic3r:libslic3r:1.3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
slic3r	libslic3r	1.3.0	cpe:2.3:a:slic3r:libslic3r:1.3.0:::::::*

References

libslic3r.com

slic3r.com

hackmd.io/nDT_UKLyRQendxDwil9A4w

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

41.7%

JSON

Related for CVE-2021-44961