Rare Technologies · Bounter · CVE-2021-41497
**Name of the Vulnerable Software and Affected Versions**
RaRe-Technologies bounter versions 1.01 through 1.10
**Description**
The issue allows attackers to conduct Denial of Service attacks by inputting a huge width of hash bucket, due to a null pointer reference in `CMS Conservative increment obj`.
**Recommendations**
For versions 1.01 through 1.10, consider restricting the input width of hash bucket to prevent Denial of Service attacks until a patch is available.
As a temporary workaround, consider implementing input validation to limit the width of hash bucket.