cvedb.io
CVE-2021-41396
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2022-07-12T14:15:14.797 · Last modified 2026-06-17T04:08:28.523

Summary

Live555 through 1.08 does not handle socket connections properly. A huge number of incoming socket connections in a short time invokes the error-handling module, in which a heap-based buffer overflow happens. An attacker can leverage this to launch a DoS attack.

Affected products

live555 — live555

Does this affect you?

Add your gear to cvedb and we'll alert you only when live555 ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.