{"id":"CVE-2021-37501","details":"Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1.13.0 allows attackers to cause a denial of service via h5tools_str_sprint in /hdf5/tools/lib/h5tools_str.c.","modified":"2026-03-13T05:06:29.358566Z","published":"2023-02-03T18:15:13.670Z","related":["SUSE-SU-2023:0691-1","SUSE-SU-2023:0777-1","SUSE-SU-2023:1563-1","SUSE-SU-2024:0538-1","SUSE-SU-2024:0882-1","SUSE-SU-2024:3144-1"],"references":[{"type":"REPORT","url":"https://github.com/HDFGroup/hdf5/issues/2458"},{"type":"PACKAGE","url":"https://github.com/HDFGroup/hdf5"},{"type":"EVIDENCE","url":"https://github.com/ST4RF4LL/Something_Found/blob/main/HDF5_v1.13.0_h5dump_heap_overflow.md"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/hdfgroup/hdf5","events":[{"introduced":"c51aa323fcda89b1f116cdd2c28a8ce0a229e29a"},{"last_affected":"34ae2775ac67f03f352a340352043e499e90141c"}],"database_specific":{"versions":[{"introduced":"1.12.0"},{"last_affected":"1.13.0"}]}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-37501.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}