Asymmetric Resource Consumption (Amplification)

CVE-2021-38447

High

7.5/10

Summary

OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: HIGH

CWE-405 - Asymmetric Resource Consumption (Amplification)

Software that does not appropriately monitor or control resource consumption can lead to adverse system performance.

References

Advisory Timeline

Published May 05, 2022

Asymmetric Resource Consumption (Amplification)

CVE-2021-38447

Summary

CWE-405 - Asymmetric Resource Consumption (Amplification)

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS