CVE-2021-3622
MEDIUM4.3EPSS 0.58%Published: 12/23/2021Modified: 4/28/2026
Also known as:DEBIAN-CVE-2021-3622
Description
A flaw was found in the hivex library. This flaw allows an attacker to input a specially crafted Windows Registry (hive) file, which would cause hivex to recursively call the _get_children() function, leading to a stack overflow. The highest threat from this vulnerability is to system availability.
Affected packages (1)
- Debian/hivexfrom 0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.3 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |