CVE-2021-41497
HIGHRaRe-Technologies bounter 1.01 and 1.10 - Denial of Service via CMS_Conservative_increment_obj Null Pointer Dereference
Title source: llmDescription
Null pointer reference in CMS_Conservative_increment_obj in RaRe-Technologies bounter version 1.01 and 1.10, allows attackers to conduct Denial of Service attacks by inputting a huge width of hash bucket.
References (1)
Core 1
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/RaRe-Technologies/bounter/issues/47
Scores
CVSS v3
7.5
EPSS
0.0104
EPSS Percentile
59.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (3)
pypi/bounter
0PyPI
rare-technologies/bounter
1.01
rare-technologies/bounter
1.10
Published
Dec 17, 2021
Tracked Since
Feb 18, 2026