6.1 Medium
AI Score
Confidence
Low
0.059 Low
EPSS
Percentile
93.4%
libpurple in Pidgin 2.1.0 through 2.2.1, when using HTML logging, allows remote attackers to cause a denial of service (NULL dereference and application crash) via a message that contains invalid HTML data, a different vector than CVE-2007-4996.