CVE-2021-3502
5.5 MEDIUMA flaw was found in avahi 0.8-5
Published: 2021-05-07 · Last updated: 2026-06-17
Severity and scoring
- CVSS
- 5.5 MEDIUM
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
- CWE
- CWE-617
Affected products
| Vendor | Product |
|---|---|
| avahi | avahi |
Description
A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this vulnerability is to the service availability.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2021-3468 — A flaw was found in avahi in versions 0.6 up to 0.8 (5.5 MEDIUM)
Same CWE
- CVE-2026-52718 — A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad (6.5 MEDIUM)
- CVE-2026-29116 — A vulnerability has been found in some Dahua products could allow an unauthenticated remote attacker to send a specially crafted packet, ...
- CVE-2026-29115 — A vulnerability has been found in some Dahua products could allow an authenticated remote attacker to send a specially crafted packet, tr...
- CVE-2026-46543 — Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm (5.3 MEDIUM)
- CVE-2026-46542 — Nimiq is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm (4.3 MEDIUM)