Lucene search
MitreCVELIST:CVE-2021-31826HistoryApr 27, 2021 - 3:33 a.m.
CVE-2021-31826
2021-04-2703:33:47
mitre
www.cve.org
3
shibboleth service provider
null pointer dereference
session recovery
crafted cookie
daemon crash
EPSS
0.002
Percentile
65.0%
Shibboleth Service Provider 3.x before 3.2.2 is prone to a NULL pointer dereference flaw involving the session recovery feature. The flaw is exploitable (for a daemon crash) on systems not using this feature if a crafted cookie is supplied.
Related
debian
debian
[SECURITY] [DSA 4905-1] shibboleth-sp security update
2021-04-27 19:40:55
[SECURITY] [DSA 4905-1] shibboleth-sp security update
2021-04-27 19:40:55
prion
prion
Null pointer dereference
2021-04-27 04:15:00
openvas
openvas
Debian: Security Advisory (DSA-4905-1)
2021-04-28 00:00:00
cve
cve
CVE-2021-31826
2021-04-27 04:15:08
osv
osv
shibboleth-sp - security update
2021-04-27 00:00:00
debiancve
debiancve
CVE-2021-31826
2021-04-27 04:15:08
nessus
nessus
Debian DSA-4905-1 : shibboleth-sp - security update
2021-04-28 00:00:00
ubuntucve
ubuntucve
CVE-2021-31826
2021-04-27 00:00:00
nvd
nvd
CVE-2021-31826
2021-04-27 04:15:08