GeoGebra CAS Calculator 6.0.631.0 - Denial of Service | Advisories

Advisories

GeoGebra CAS Calculator 6.0.631.0 - Denial of Service

severity: medium
date: January 21, 2026
Affecting: CAS Calculator 6.0.631.0
CVE: CVE-2021-47875
CWE: CWE-770 Allocation of Resources Without Limits or Throttling
CVSS: 4.6
CVSS V4 Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
References: ExploitDB-49655
GeoGebra Official Homepage
Credit: Brian Rodriguez
Description: GeoGebra CAS Calculator 6.0.631.0 contains a denial of service vulnerability that allows attackers to crash the application by generating a large buffer overflow. Attackers can create a payload with 8000 repeated characters and paste it into the calculator's input field to trigger an application crash.