Vulnerability Details CVE-2021-27506
The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19, 3.11.7 and 4.2.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.7%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
Products affected by CVE-2021-27506
-
cpe:2.3:a:clamav:clamav:-
-
cpe:2.3:a:clamav:clamav:0.01
-
cpe:2.3:a:clamav:clamav:0.02
-
cpe:2.3:a:clamav:clamav:0.03
-
cpe:2.3:a:clamav:clamav:0.05
-
cpe:2.3:a:clamav:clamav:0.10
-
cpe:2.3:a:clamav:clamav:0.100.0
-
cpe:2.3:a:clamav:clamav:0.100.1
-
cpe:2.3:a:clamav:clamav:0.100.2
-
cpe:2.3:a:clamav:clamav:0.101.0
-
cpe:2.3:a:clamav:clamav:0.101.1
-
cpe:2.3:a:clamav:clamav:0.101.2
-
cpe:2.3:a:clamav:clamav:0.101.3
-
cpe:2.3:a:clamav:clamav:0.101.4
-
cpe:2.3:a:clamav:clamav:0.101.5
-
cpe:2.3:a:clamav:clamav:0.102.0
-
cpe:2.3:a:clamav:clamav:0.102.1
-
cpe:2.3:a:clamav:clamav:0.102.2
-
cpe:2.3:a:clamav:clamav:0.102.3
-
cpe:2.3:a:clamav:clamav:0.102.4
-
cpe:2.3:a:clamav:clamav:0.103.0
-
cpe:2.3:a:clamav:clamav:0.103.1
-
cpe:2.3:a:clamav:clamav:0.12
-
cpe:2.3:a:clamav:clamav:0.13
-
cpe:2.3:a:clamav:clamav:0.14
-
cpe:2.3:a:clamav:clamav:0.15
-
cpe:2.3:a:clamav:clamav:0.20
-
cpe:2.3:a:clamav:clamav:0.21
-
cpe:2.3:a:clamav:clamav:0.22
-
cpe:2.3:a:clamav:clamav:0.23
-
cpe:2.3:a:clamav:clamav:0.24
-
cpe:2.3:a:clamav:clamav:0.3
-
cpe:2.3:a:clamav:clamav:0.51
-
cpe:2.3:a:clamav:clamav:0.52
-
cpe:2.3:a:clamav:clamav:0.53
-
cpe:2.3:a:clamav:clamav:0.54
-
cpe:2.3:a:clamav:clamav:0.60
-
cpe:2.3:a:clamav:clamav:0.60p
-
cpe:2.3:a:clamav:clamav:0.65
-
cpe:2.3:a:clamav:clamav:0.66
-
cpe:2.3:a:clamav:clamav:0.67
-
cpe:2.3:a:clamav:clamav:0.67-1
-
cpe:2.3:a:clamav:clamav:0.68
-
cpe:2.3:a:clamav:clamav:0.68.1
-
cpe:2.3:a:clamav:clamav:0.70
-
cpe:2.3:a:clamav:clamav:0.70.0
-
cpe:2.3:a:clamav:clamav:0.71
-
cpe:2.3:a:clamav:clamav:0.71.0
-
cpe:2.3:a:clamav:clamav:0.72
-
cpe:2.3:a:clamav:clamav:0.72.0
-
cpe:2.3:a:clamav:clamav:0.73
-
cpe:2.3:a:clamav:clamav:0.73.0
-
cpe:2.3:a:clamav:clamav:0.74
-
cpe:2.3:a:clamav:clamav:0.74.0
-
cpe:2.3:a:clamav:clamav:0.75
-
cpe:2.3:a:clamav:clamav:0.75.0
-
cpe:2.3:a:clamav:clamav:0.75.1
-
cpe:2.3:a:clamav:clamav:0.8
-
cpe:2.3:a:clamav:clamav:0.80
-
cpe:2.3:a:clamav:clamav:0.80.0
-
cpe:2.3:a:clamav:clamav:0.80_rc
-
cpe:2.3:a:clamav:clamav:0.81
-
cpe:2.3:a:clamav:clamav:0.81.0
-
cpe:2.3:a:clamav:clamav:0.82
-
cpe:2.3:a:clamav:clamav:0.82.0
-
cpe:2.3:a:clamav:clamav:0.83
-
cpe:2.3:a:clamav:clamav:0.83.0
-
cpe:2.3:a:clamav:clamav:0.84
-
cpe:2.3:a:clamav:clamav:0.84.0
-
cpe:2.3:a:clamav:clamav:0.85
-
cpe:2.3:a:clamav:clamav:0.85.0
-
cpe:2.3:a:clamav:clamav:0.85.1
-
cpe:2.3:a:clamav:clamav:0.86
-
cpe:2.3:a:clamav:clamav:0.86.0
-
cpe:2.3:a:clamav:clamav:0.86.1
-
cpe:2.3:a:clamav:clamav:0.86.2
-
cpe:2.3:a:clamav:clamav:0.87
-
cpe:2.3:a:clamav:clamav:0.87.0
-
cpe:2.3:a:clamav:clamav:0.87.1
-
cpe:2.3:a:clamav:clamav:0.88
-
cpe:2.3:a:clamav:clamav:0.88.0
-
cpe:2.3:a:clamav:clamav:0.88.1
-
cpe:2.3:a:clamav:clamav:0.88.2
-
cpe:2.3:a:clamav:clamav:0.88.3
-
cpe:2.3:a:clamav:clamav:0.88.4
-
cpe:2.3:a:clamav:clamav:0.88.5
-
cpe:2.3:a:clamav:clamav:0.88.6
-
cpe:2.3:a:clamav:clamav:0.88.7
-
cpe:2.3:a:clamav:clamav:0.88.7_p0
-
cpe:2.3:a:clamav:clamav:0.88.7_p1
-
cpe:2.3:a:clamav:clamav:0.9
-
cpe:2.3:a:clamav:clamav:0.90
-
cpe:2.3:a:clamav:clamav:0.90.0
-
cpe:2.3:a:clamav:clamav:0.90.1
-
cpe:2.3:a:clamav:clamav:0.90.1_p0
-
cpe:2.3:a:clamav:clamav:0.90.2
-
cpe:2.3:a:clamav:clamav:0.90.2_p0
-
cpe:2.3:a:clamav:clamav:0.90.3
-
cpe:2.3:a:clamav:clamav:0.90.3_p0
-
cpe:2.3:a:clamav:clamav:0.90.3_p1
-
cpe:2.3:a:clamav:clamav:0.91
-
cpe:2.3:a:clamav:clamav:0.91.0
-
cpe:2.3:a:clamav:clamav:0.91.1
-
cpe:2.3:a:clamav:clamav:0.91.2
-
cpe:2.3:a:clamav:clamav:0.91.2_p0
-
cpe:2.3:a:clamav:clamav:0.92
-
cpe:2.3:a:clamav:clamav:0.92.0
-
cpe:2.3:a:clamav:clamav:0.92.1
-
cpe:2.3:a:clamav:clamav:0.92_p0
-
cpe:2.3:a:clamav:clamav:0.93
-
cpe:2.3:a:clamav:clamav:0.93.0
-
cpe:2.3:a:clamav:clamav:0.93.1
-
cpe:2.3:a:clamav:clamav:0.93.2
-
cpe:2.3:a:clamav:clamav:0.93.3
-
cpe:2.3:a:clamav:clamav:0.94
-
cpe:2.3:a:clamav:clamav:0.94.0
-
cpe:2.3:a:clamav:clamav:0.94.1
-
cpe:2.3:a:clamav:clamav:0.94.2
-
cpe:2.3:a:clamav:clamav:0.95
-
cpe:2.3:a:clamav:clamav:0.95.0
-
cpe:2.3:a:clamav:clamav:0.95.1
-
cpe:2.3:a:clamav:clamav:0.95.2
-
cpe:2.3:a:clamav:clamav:0.95.3
-
cpe:2.3:a:clamav:clamav:0.96
-
cpe:2.3:a:clamav:clamav:0.96.0
-
cpe:2.3:a:clamav:clamav:0.96.1
-
cpe:2.3:a:clamav:clamav:0.96.2
-
cpe:2.3:a:clamav:clamav:0.96.3
-
cpe:2.3:a:clamav:clamav:0.96.4
-
cpe:2.3:a:clamav:clamav:0.96.5
-
cpe:2.3:a:clamav:clamav:0.97
-
cpe:2.3:a:clamav:clamav:0.97.0
-
cpe:2.3:a:clamav:clamav:0.97.1
-
cpe:2.3:a:clamav:clamav:0.97.2
-
cpe:2.3:a:clamav:clamav:0.97.3
-
cpe:2.3:a:clamav:clamav:0.97.4
-
cpe:2.3:a:clamav:clamav:0.97.5
-
cpe:2.3:a:clamav:clamav:0.97.6
-
cpe:2.3:a:clamav:clamav:0.97.7
-
cpe:2.3:a:clamav:clamav:0.97.8
-
cpe:2.3:a:clamav:clamav:0.98.0
-
cpe:2.3:a:clamav:clamav:0.98.1
-
cpe:2.3:a:clamav:clamav:0.98.3
-
cpe:2.3:a:clamav:clamav:0.98.4
-
cpe:2.3:a:clamav:clamav:0.98.5
-
cpe:2.3:a:clamav:clamav:0.98.6
-
cpe:2.3:a:clamav:clamav:0.98.7
-
cpe:2.3:a:clamav:clamav:0.99.0
-
cpe:2.3:a:clamav:clamav:0.99.1
-
cpe:2.3:a:clamav:clamav:0.99.2
-
cpe:2.3:a:clamav:clamav:0.99.3
-
cpe:2.3:a:clamav:clamav:0.99.4
-
cpe:2.3:a:netasq_project:netasq:*
-
cpe:2.3:a:stormshield:stormshield_network_security:1.0.0
-
cpe:2.3:a:stormshield:stormshield_network_security:1.1.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.0.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.1.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.1.1
-
cpe:2.3:a:stormshield:stormshield_network_security:2.1.2
-
cpe:2.3:a:stormshield:stormshield_network_security:2.10.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.11.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.12.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.13.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.14.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.15.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.16.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.2.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.2.1
-
cpe:2.3:a:stormshield:stormshield_network_security:2.2.2
-
cpe:2.3:a:stormshield:stormshield_network_security:2.2.3
-
cpe:2.3:a:stormshield:stormshield_network_security:2.2.4
-
cpe:2.3:a:stormshield:stormshield_network_security:2.2.5
-
cpe:2.3:a:stormshield:stormshield_network_security:2.2.6
-
cpe:2.3:a:stormshield:stormshield_network_security:2.3.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.3.1
-
cpe:2.3:a:stormshield:stormshield_network_security:2.3.2
-
cpe:2.3:a:stormshield:stormshield_network_security:2.3.3
-
cpe:2.3:a:stormshield:stormshield_network_security:2.3.4
-
cpe:2.3:a:stormshield:stormshield_network_security:2.4.1
-
cpe:2.3:a:stormshield:stormshield_network_security:2.4.2
-
cpe:2.3:a:stormshield:stormshield_network_security:2.5.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.5.1
-
cpe:2.3:a:stormshield:stormshield_network_security:2.5.2
-
cpe:2.3:a:stormshield:stormshield_network_security:2.6.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.6.1
-
cpe:2.3:a:stormshield:stormshield_network_security:2.6.2
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.1
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.10
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.11
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.2
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.3
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.4
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.7
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.8
-
cpe:2.3:a:stormshield:stormshield_network_security:2.7.9
-
cpe:2.3:a:stormshield:stormshield_network_security:2.8.0
-
cpe:2.3:a:stormshield:stormshield_network_security:2.8.1
-
cpe:2.3:a:stormshield:stormshield_network_security:2.8.2
-
cpe:2.3:a:stormshield:stormshield_network_security:2.9.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.0.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.0.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.0.2
-
cpe:2.3:a:stormshield:stormshield_network_security:3.0.3
-
cpe:2.3:a:stormshield:stormshield_network_security:3.1.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.1.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.1.2
-
cpe:2.3:a:stormshield:stormshield_network_security:3.10.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.12
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.13
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.17
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.18
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.19
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.20
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.21
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.22
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.23
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.24
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.25
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.27
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.4
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.5
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.8
-
cpe:2.3:a:stormshield:stormshield_network_security:3.11.9
-
cpe:2.3:a:stormshield:stormshield_network_security:3.2.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.2.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.3.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.3.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.3.2
-
cpe:2.3:a:stormshield:stormshield_network_security:3.4.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.4.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.4.2
-
cpe:2.3:a:stormshield:stormshield_network_security:3.4.3
-
cpe:2.3:a:stormshield:stormshield_network_security:3.5.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.5.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.5.2
-
cpe:2.3:a:stormshield:stormshield_network_security:3.6.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.6.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.10
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.13
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.16
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.17
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.20
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.21
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.24
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.25
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.29
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.30
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.33
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.34
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.35
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.36
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.37
-
cpe:2.3:a:stormshield:stormshield_network_security:3.7.39
-
cpe:2.3:a:stormshield:stormshield_network_security:3.8.0
-
cpe:2.3:a:stormshield:stormshield_network_security:3.8.1
-
cpe:2.3:a:stormshield:stormshield_network_security:3.9.1
-
cpe:2.3:a:stormshield:stormshield_network_security:4.0.0
-
cpe:2.3:a:stormshield:stormshield_network_security:4.0.1
-
cpe:2.3:a:stormshield:stormshield_network_security:4.0.4
-
cpe:2.3:a:stormshield:stormshield_network_security:4.1.1
-
cpe:2.3:a:stormshield:stormshield_network_security:4.1.4
-
cpe:2.3:a:stormshield:stormshield_network_security:4.1.5
-
cpe:2.3:a:stormshield:stormshield_network_security:4.2.0