CVE-2021-4465
Severity CVSS v4.0:
HIGH
Type:
CWE-400
Uncontrolled Resource Consumption ('Resource Exhaustion')
Publication date:
14/11/2025
Last modified:
14/11/2025
Description
ReQuest Serious Play F3 Media Server versions 7.0.3.4968 (Pro), 7.0.2.4954, 6.5.2.4954, 6.4.2.4681, 6.3.2.4203, and 2.0.1.823 contain a remote denial-of-service vulnerability. The device can be shut down or rebooted by an unauthenticated attacker through a single crafted HTTP GET request, allowing remote interruption of service availability.
Impact
Base Score 4.0
8.70
Severity 4.0
HIGH
References to Advisories, Solutions, and Tools
- http://www.request.com/
- https://cxsecurity.com/issue/WLB-2020100122
- https://exchange.xforce.ibmcloud.com/vulnerabilities/190031
- https://packetstorm.news/files/id/159602
- https://www.exploit-db.com/exploits/48951
- https://www.vulncheck.com/advisories/request-serious-play-f3-media-server-remote-dos
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5601.php