CVE-2021-24029 - OpenCVE

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit a67083ff4b8dcbb7ee2839da6338032030d712b0 and proxygen versions prior to v2021.03.15.00.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Facebook	Mvfst Proxygen

Configuration 1 [-]

OR	cpe:2.3:a:facebook:mvfst::::::::
	cpe:2.3:a:facebook:proxygen::::::::

No data.

References

Link	Providers
https://github.com/facebookincubator/mvfst/commit/a67083ff4b8dcbb7ee2839da6338032030d712b0
https://www.facebook.com/security/advisories/cve-2021-24029

History

No history.

MITRE

Status: PUBLISHED

Assigner: facebook

Published: 2021-03-15T21:15:16

Updated: 2024-08-03T19:21:17.115Z

Reserved: 2021-01-13T00:00:00

Link: CVE-2021-24029

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2021-03-15T22:15:13.530

Modified: 2021-03-23T16:34:55.963

Link: CVE-2021-24029

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "mvfst", "vendor": "Facebook", "versions": [{"lessThan": "unspecified", "status": "unaffected", "version": "a67083ff4b8dcbb7ee2839da6338032030d712b0", "versionType": "custom"}, {"lessThan": "a67083ff4b8dcbb7ee2839da6338032030d712b0", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "proxygen", "vendor": "Facebook", "versions": [{"lessThan": "unspecified", "status": "unaffected", "version": "v2021.03.15.00", "versionType": "custom"}, {"lessThan": "v2021.03.15.00", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "dateAssigned": "2021-03-10T00:00:00", "descriptions": [{"lang": "en", "value": "A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit a67083ff4b8dcbb7ee2839da6338032030d712b0 and proxygen versions prior to v2021.03.15.00."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-617", "description": "Reachable Assertion (CWE-617)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-03-15T21:15:16", "orgId": "4fc57720-52fe-4431-a0fb-3d2c8747b827", "shortName": "facebook"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/facebookincubator/mvfst/commit/a67083ff4b8dcbb7ee2839da6338032030d712b0"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.facebook.com/security/advisories/cve-2021-24029"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve-assign@fb.com", "DATE_ASSIGNED": "2021-03-10", "ID": "CVE-2021-24029", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "mvfst", "version": {"version_data": [{"version_affected": "!>=", "version_value": "a67083ff4b8dcbb7ee2839da6338032030d712b0"}, {"version_affected": "<", "version_value": "a67083ff4b8dcbb7ee2839da6338032030d712b0"}]}}, {"product_name": "proxygen", "version": {"version_data": [{"version_affected": "!>=", "version_value": "v2021.03.15.00"}, {"version_affected": "<", "version_value": "v2021.03.15.00"}]}}]}, "vendor_name": "Facebook"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit a67083ff4b8dcbb7ee2839da6338032030d712b0 and proxygen versions prior to v2021.03.15.00."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Reachable Assertion (CWE-617)"}]}]}, "references": {"reference_data": [{"name": "https://github.com/facebookincubator/mvfst/commit/a67083ff4b8dcbb7ee2839da6338032030d712b0", "refsource": "CONFIRM", "url": "https://github.com/facebookincubator/mvfst/commit/a67083ff4b8dcbb7ee2839da6338032030d712b0"}, {"name": "https://www.facebook.com/security/advisories/cve-2021-24029", "refsource": "CONFIRM", "url": "https://www.facebook.com/security/advisories/cve-2021-24029"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T19:21:17.115Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/facebookincubator/mvfst/commit/a67083ff4b8dcbb7ee2839da6338032030d712b0"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.facebook.com/security/advisories/cve-2021-24029"}]}]}, "cveMetadata": {"assignerOrgId": "4fc57720-52fe-4431-a0fb-3d2c8747b827", "assignerShortName": "facebook", "cveId": "CVE-2021-24029", "datePublished": "2021-03-15T21:15:16", "dateReserved": "2021-01-13T00:00:00", "dateUpdated": "2024-08-03T19:21:17.115Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:facebook:mvfst:*:*:*:*:*:*:*:*", "matchCriteriaId": "D48024F5-694D-40A0-AAC5-8F3E127E1CCF", "versionEndExcluding": "2021-03-13", "vulnerable": true}, {"criteria": "cpe:2.3:a:facebook:proxygen:*:*:*:*:*:*:*:*", "matchCriteriaId": "4855309D-53DF-44FE-B80D-D0D3E2425D32", "versionEndExcluding": "2021.03.15.00", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit a67083ff4b8dcbb7ee2839da6338032030d712b0 and proxygen versions prior to v2021.03.15.00."}, {"lang": "es", "value": "Un paquete de escenario death es posible en mvfst por medio de un mensaje especialmente dise\u00f1ado durante una sesi\u00f3n QUIC, lo que causa un bloqueo por medio de un fallo de aserci\u00f3n. Seg\u00fan la especificaci\u00f3n QUIC, este mensaje en particular debe tratarse como un error de conexi\u00f3n. Este problema afecta a las versiones de mvfst anteriores al commit a67083ff4b8dcbb7ee2839da6338032030d712b0 y versiones de proxygen anteriores a v2021.03.15.00"}], "id": "CVE-2021-24029", "lastModified": "2021-03-23T16:34:55.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-03-15T22:15:13.530", "references": [{"source": "cve-assign@fb.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/facebookincubator/mvfst/commit/a67083ff4b8dcbb7ee2839da6338032030d712b0"}, {"source": "cve-assign@fb.com", "tags": ["Vendor Advisory"], "url": "https://www.facebook.com/security/advisories/cve-2021-24029"}], "sourceIdentifier": "cve-assign@fb.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-617"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-617"}], "source": "cve-assign@fb.com", "type": "Secondary"}]}