Incomplete string comparison vulnerability exits in cvxopt.org cvxop <= 1.2.6 in APIs (cvxopt.cholmod.diag, cvxopt.cholmod.getfactor, cvxopt.cholmod.solve, cvxopt.cholmod.spsolve), which allows attackers to conduct Denial of Service attacks by construct fake Capsule objects.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-12-17T20:44:24
Updated: 2024-08-04T03:15:28.325Z
Reserved: 2021-09-20T00:00:00
Link: CVE-2021-41500
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-12-17T21:15:07.777
Modified: 2023-11-07T03:38:57.167
Link: CVE-2021-41500
Redhat
No data.