CVE-2021-30500

2021-05-2623:51:50

CWE-476

redhat

www.cve.org

0.002 Low

EPSS

Percentile

58.4%

JSON

Null pointer dereference was found in upx PackLinuxElf::canUnpack() in p_lx_elf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file.

CNA Affected

[
  {
    "product": "upx",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "upx 4.0"
      }
    ]
  }
]