Back to search
CVE-2021-43045
Published: Jan 6, 2022
Modified: Aug 4, 2024
PUBLISHED
Description
A vulnerability in the .NET SDK of Apache Avro allows an attacker to allocate excessive resources, potentially causing a denial-of-service attack. This issue affects .NET applications using Apache Avro version 1.10.2 and prior versions. Users should update to version 1.11.0 which addresses this issue.
| Vendor | Product | Versions |
|---|---|---|
Apache Software Foundation | Apache Avro | affected Apache Avro - <= 1.10.2 |
Weaknesses (CWE)
References
https://lists.apache.org/thread/5fttw9vk6gd2p3b846nox7hcj5469xfd
x_refsource_MISC
[oss-security] 20220106 CVE-2021-43045: Apache Avro: Possible DOS vulnerabilities in C# Avro SDK
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now