CVE-2021-33591

2021-05-2810:50:09

CWE-489

naver

www.cve.org

naver comic viewer

remote debugging port

arbitrary code execution

cve-2021-33591

AI Score

8.8

Confidence

High

EPSS

0.004

Percentile

74.5%

JSON

An exposed remote debugging port in Naver Comic Viewer prior to 1.0.15.0 allowed a remote attacker to execute arbitrary code via a crafted HTML page.

CNA Affected

[
  {
    "product": "Naver Comic Viewer",
    "vendor": "NAVER",
    "versions": [
      {
        "lessThanOrEqual": "1.0.14.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

cve.naver.com/detail/cve-2021-33591