QwikSec

Security Database

CVE

CWE

Training

CVE-2021-20234

Published: Apr 1, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

An uncontrolled resource consumption (memory leak) flaw was found in the ZeroMQ client in versions before 4.3.3 in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compromised servers to crash. The highest threat from this vulnerability is to system availability.

Vendor	Product	Versions
n/a	zeromq	affected `zeromq 4.3.3`

Weaknesses (CWE)

References

https://bugzilla.redhat.com/show_bug.cgi?id=1921972

x_refsource_MISC

https://github.com/zeromq/libzmq/security/advisories/GHSA-wfr2-29gj-5w87

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.