CVE-2021-33586
- Source
- https://cve.org/CVERecord?id=CVE-2021-33586
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-33586.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-33586
- Downstream
- Published
- 2021-05-27T05:15:06.993Z
- Modified
- 2026-03-14T14:45:23.341967Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
InspIRCd 3.8.0 through 3.9.x before 3.10.0 allows any user (able to connect to the server) to access recently deallocated memory, aka the "malformed PONG" issue.
- References
Affected packages
Git / github.com/inspircd/inspircd
Database specific
vanir_signatures
[
{
"id": "CVE-2021-33586-44bd76ff",
"signature_type": "Line",
"target": {
"file": "include/clientprotocolmsg.h"
},
"deprecated": false,
"digest": {
"line_hashes": [
"172236433412257313883103957772383903383",
"220703310501416717366140712732379042131",
"52434925730221493171471376307921343860",
"70281737129417841586534436710458404628",
"263384407924776216272824341098924172406",
"315415170026200256221787970084830905795"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://github.com/inspircd/inspircd/commit/4350a11c663b0d75f8119743bffb7736d87abd4d"
},
{
"id": "CVE-2021-33586-6c241bbe",
"signature_type": "Line",
"target": {
"file": "src/coremods/core_user/core_user.cpp"
},
"deprecated": false,
"digest": {
"line_hashes": [
"324890397734487770979278848730261565209",
"249933969203486859797144565555425798009",
"122328167582706218575434760079144219617",
"206397735007201542476051935054925026908"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://github.com/inspircd/inspircd/commit/4350a11c663b0d75f8119743bffb7736d87abd4d"
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-33586.json"