CVE-2021-41800

MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). Visiting Special:Contributions can sometimes result in a long running SQL query because PoolCounter protection is mishandled.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

Information

Published : 2021-10-11 01:15

Updated : 2021-11-28 15:29


NVD link : CVE-2021-41800

Mitre link : CVE-2021-41800


JSON object : View

CWE
CWE-770

Allocation of Resources Without Limits or Throttling

Products Affected

fedoraproject

  • fedora

mediawiki

  • mediawiki