How severe is CVE-2021-28652?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.9 out of 10.

What type of vulnerability is CVE-2021-28652?

This is classified as CWE-401, which is a common weakness in software security.

CVE-2021-28652

MEDIUM Year: 2021

CVSS v3 Score

4.9

Medium

CVSS v2 Score

4.0

Medium

Weakness Type

CWE-401

View all →

Vulnerability Description

An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to incorrect parser validation, it allows a Denial of Service attack against the Cache Manager API. This allows a trusted client to trigger memory leaks that. over time, lead to a Denial of Service via an unspecified short query string. This attack is limited to clients with Cache Manager API access privilege.

CVE-2020-15025

MEDIUM

CVSS:4.9(Medium)

ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where...

CWE-4012020

CVE-2020-1883

MEDIUM

CVSS:4.9(Medium)

Huawei products NIP6800;Secospace USG6600;USG9500 have a memory leak vulnerability. An attacker with high privileges exploits this vulnerability by continuously performing specific operations. Success...

CWE-4012020

CVE-2021-22341

MEDIUM

CVSS:4.9(Medium)

There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege can exploit this vulnerability by performing some operations. ...

CWE-4012021

CVE-2021-34389

MEDIUM

CVSS:5.0(Medium)

Trusty contains a vulnerability in NVIDIA OTE protocol message parsing code, which is present in all the TAs. An incorrect bounds check can allow a local user through a malicious client to access memo...

CWE-4012021

CVE-2018-0832

MEDIUM

CVSS:4.7(Medium)

The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure ...

CWE-4012018

CVE-2018-0895

MEDIUM

CVSS:4.7(Medium)

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 ...

CWE-4012018

CVE-2021-28652

Vulnerability Description

Related Vulnerabilities

CVE-2020-15025

CVE-2020-1883

CVE-2021-22341

CVE-2021-34389

CVE-2018-0832

CVE-2018-0895