QSearchQSearch

CVE-2021-3502

5.5 MEDIUM

A flaw was found in avahi 0.8-5

Published: 2021-05-07 · Last updated: 2026-06-17

Severity and scoring

CVSS
5.5 MEDIUM
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE
CWE-617

Affected products

VendorProduct
avahiavahi

Description

A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this vulnerability is to the service availability.

Source: NVD

References

Related CVEs

Same vendor

  • CVE-2021-3468 A flaw was found in avahi in versions 0.6 up to 0.8 (5.5 MEDIUM)

Same CWE

  • CVE-2026-52718 A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad (6.5 MEDIUM)
  • CVE-2026-29116 A vulnerability has been found in some Dahua products could allow an unauthenticated remote attacker to send a specially crafted packet, ...
  • CVE-2026-29115 A vulnerability has been found in some Dahua products could allow an authenticated remote attacker to send a specially crafted packet, tr...
  • CVE-2026-46543 Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm (5.3 MEDIUM)
  • CVE-2026-46542 Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm (4.3 MEDIUM)