Lucene search
HistoryJan 20, 2023 - 9:15 p.m.
CVE-2021-33642
cve-2021-33642
file processing
infinite loop
next_inline()
more_curly()
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.9%
When a file is processed, an infinite loop occurs in next_inline() of the more_curly() function.
Affected configurations
Node
openeulerbyaccRange<1.9.20200330
ORopeneulerbyaccRange2.0–2.0.20210808
| CPE | Name | Operator | Version |
|---|---|---|---|
| openeuler:byacc | openeuler byacc | lt | 1.9.20200330 |
| openeuler:byacc | openeuler byacc | lt | 2.0.20210808 |
CNA Affected
[
{
"vendor": "n/a",
"product": "byacc",
"versions": [
{
"version": "<1.9.20200330 and <2.0.20210808",
"status": "affected"
}
]
}
]Related
prion
prion
Default credentials
2023-01-20 21:15:00
nvd
nvd
CVE-2021-33642
2023-01-20 21:15:11
cvelist
cvelist
CVE-2021-33642
2023-01-20 00:00:00
redhatcve
redhatcve
CVE-2021-33642
2023-03-30 12:58:04
nessus
nessus
EulerOS 2.0 SP9 : byacc (EulerOS-SA-2023-1461)
2023-03-08 00:00:00
EulerOS 2.0 SP11 : byacc (EulerOS-SA-2023-1778)
2023-05-08 00:00:00
Amazon Linux 2023 : byacc (ALAS2023-2023-204)
2023-06-08 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for byacc (EulerOS-SA-2023-1461)
2023-03-09 00:00:00
Huawei EulerOS: Security Advisory for byacc (EulerOS-SA-2023-1756)
2023-05-08 00:00:00
Huawei EulerOS: Security Advisory for byacc (EulerOS-SA-2023-1778)
2023-05-08 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.9%
Related for CVE-2021-33642