How severe is CVE-2021-3861?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.8 out of 10.

What type of vulnerability is CVE-2021-3861?

This is classified as CWE-122, which is a common weakness in software security.

CVE-2021-3861

MEDIUM Year: 2021

CVSS v3 Score

6.8

Medium

CVSS v2 Score

7.2

High

Weakness Type

CWE-122

View all →

Vulnerability Description

The RNDIS USB device class includes a buffer overflow vulnerability. Zephyr versions >= v2.6.0 contain Heap-based Buffer Overflow (CWE-122). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-hvfp-w4h8-gxvj

CVE-2021-31986

MEDIUM

CVSS:6.8(Medium)

User controlled parameters related to SMTP notifications are not correctly validated. This can lead to a buffer overflow resulting in crashes and data leakage.

CWE-1222021

CVE-2022-0158

MEDIUM

CVSS:6.8(Medium)

vim is vulnerable to Heap-based Buffer Overflow

CWE-1222022

CVE-2022-0213

MEDIUM

CVSS:6.8(Medium)

vim is vulnerable to Heap-based Buffer Overflow

CWE-1222022

CVE-2023-21694

MEDIUM

CVSS:6.8(Medium)

Windows Fax Service Remote Code Execution Vulnerability

CWE-1222023

CVE-2023-28269

MEDIUM

CVSS:6.8(Medium)

Windows Boot Manager Security Feature Bypass Vulnerability

CWE-1222023

CVE-2024-0145

MEDIUM

CVSS:6.8(Medium)

NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause a heap-based buffer overflow issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerabil...

CWE-1222024

CVE-2021-3861

Vulnerability Description

Related Vulnerabilities

CVE-2021-31986

CVE-2022-0158

CVE-2022-0213

CVE-2023-21694

CVE-2023-28269

CVE-2024-0145