CVE-2021-43399

EPSS 0.37% · P59 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-43399

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Yubico YubiHSM YubiHSM2 library 2021.08, included in the yubihsm-shell project, does not properly validate the length of some operations including SSH signing requests, and some data operations received from a YubiHSM 2 device.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

yubihsm-shell 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

yubihsm-shell是个人开发者的一个可与 YubiHSM 2 交互的组件。该组件大多存在于与 YubiHSM 2 交互的应用中，面向用户和程序级别的交互。 yubihsm-shell 中存在缓冲区错误漏洞，该漏洞源于产品未正确验证某些操作的中的数据长度。以下产品及版本受到影响： YubiHSM YubiHSM2 2021.08 版本。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2021-43399

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-43399

请登录查看更多情报信息。

https://www.yubico.com/support/security-advisories/ysa-2021-04/x_refsource_MISC
https://blog.inhq.net/posts/yubico-yubihsm-shell-vuln3/x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2021-43399

Same Patch Batch · n/a · 2021-12-08 · 21 CVEs total

CVE-2021-44726	8.8 HIGH	Knime Server 跨站脚本漏洞
CVE-2021-44725	7.5 HIGH	Knime Server 路径遍历漏洞
CVE-2021-43978	7.1 HIGH	Allegro Windows 安全漏洞
CVE-2021-42110	7.1 HIGH	Allegro Windows 输入验证错误漏洞
CVE-2021-40860		Genesys Intelligent Workload Distribution SQL注入漏洞
CVE-2021-44529		Ivanti Endpoint Manager 代码注入漏洞
CVE-2021-3370		DouCo DouPHP 跨站脚本漏洞
CVE-2020-22421		迅易科技 74cms 跨站脚本漏洞
CVE-2018-25020		Linux kernel 安全漏洞
CVE-2021-44556		National Library Of The Netherlands / Research Digger 代码问题漏洞
CVE-2021-44557		MultiNer代码问题漏洞
CVE-2021-42835		PLEX Plex Media Server 访问控制错误漏洞
CVE-2021-21957		Dream Report ODS Remote Connector 安全漏洞
CVE-2021-40861		Genesys Intelligent Workload Distribution SQL注入漏洞
CVE-2021-41450		Tp-link TP-Link AX10 环境问题漏洞
CVE-2021-41063		Aanderaa GeoView SQL注入漏洞
CVE-2020-27416		Maharashtra State Electricity Distribution Mahavitaran 代码问题漏洞
CVE-2021-4048		Lapack 缓冲区错误漏洞
CVE-2021-21951		Eufy Anker Eufy Homebase 缓冲区错误漏洞
CVE-2021-21950		Eufy Anker Eufy Homebase 缓冲区错误漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2021-43399

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-43399

I. Basic Information for CVE-2021-43399

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-43399

III. Intelligence Information for CVE-2021-43399

Same Patch Batch · n/a · 2021-12-08 · 21 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-43399

Leave a comment